Wazuh is an (Wazuh) open source application. Wazuh 3.6.1 and later, 3.13.5 and earlier, 4.0.0 and later, 4.2.7 and earlier, and 4.3.0 and later, 4.3.7 and earlier are vulnerable to a code execution vulnerability that stems from Active Response endpoint fails to properly filter the special elements of the constructed code segment. An attacker could exploit the vulnerability to execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
wazuh wazuh >=3.6.1, | le | 3.13.5 | |
wazuh wazuh >=4.0.0, | le | 4.2.7 | |
wazuh wazuh >=4.3.0, | le | 4.3.7 |