Lucene search

[email protected]CVE-2024-32038

HistoryApr 19, 2024 - 3:15 p.m.

CVE-2024-32038

2024-04-1915:15:50

CWE-122

[email protected]

web.nvd.nist.gov

wazuh

threat prevention

buffer overflow

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.0%

JSON

Wazuh is a free and open source platform used for threat prevention, detection, and response. There is a buffer overflow hazard in wazuh-analysisd when handling Unicode characters from Windows Eventchannel messages. It impacts Wazuh Manager 3.8.0 and above. This vulnerability is fixed in Wazuh Manager 4.7.2.

Affected configurations

Vulners

Node

wazuhwazuhRange3.8.0–4.7.2

VendorProductVersionCPE
wazuhwazuh*cpe:2.3:a:wazuh:wazuh:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wazuh	wazuh	*	cpe:2.3:a:wazuh:wazuh::::::::

CNA Affected

[
  {
    "vendor": "wazuh",
    "product": "wazuh",
    "versions": [
      {
        "version": ">= 3.8.0, < 4.7.2",
        "status": "affected"
      }
    ]
  }
]

References

github.com/wazuh/wazuh/security/advisories/GHSA-fcpw-v3pg-c327

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.0%

JSON

Related for CVE-2024-32038

zdi1 nvd1 cvelist1 vulnrichment1