Primary

Context

Elastic Kibana Workflows Code Injection Vulnerability Allowing File Read and SSRF

Vulnerability

Patched

A vulnerability exists in the Workflows feature of Elastic Kibana 9.3.0, allowing authenticated users with the 'workflowsManagement:executeWorkflow' privilege to read arbitrary files from the Kibana server filesystem and perform Server-Side Request Forgery (SSRF) via code injection. This issue arises from improper neutralization of special elements used in a template engine, and the Workflows feature must be specifically enabled within Advanced Settings, as it is turned off by default.

Impact

Exploitation of this vulnerability could lead to unauthorized file access on the Kibana server and facilitate Server-Side Request Forgery attacks.

Remediation

Users can upgrade to Kibana 9.3.1, where this vulnerability is resolved. For those unable to upgrade, the Workflows feature can be disabled.

Added: Feb 26, 2026, 7:39 PM

Updated: Feb 26, 2026, 7:39 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

0.2

exploitability

4.9

remediation

8.3

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

0.2

exploitability

4.9

remediation

8.3

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Elastic Kibana Workflows Code Injection Vulnerability Allowing File Read and SSRF

Vulnerability

Impact

Remediation

Affected Products

Elastic Kibana

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating