Lucene search
K

46 matches found

Nuclei
Nuclei
added 2 days ago92 views

Wazuh - Unsafe Deserialization Remote Code Execution

A critical Remote Code Execution RCE vulnerability exists in Wazuh server versions = 4.4.0 and = 4.4.0 and 4.9.1. The vulnerability occurs due to unsafe deserialization in the wazuh-manager package, specifically in the DistributedAPI where parameters are serialized as JSON and deserialized using...

9.9CVSS7.7AI score0.92579EPSS
Exploits10References3
ATTACKERKB
ATTACKERKB
added 2026/04/29 5:55 p.m.3 views

CVE-2026-30893

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.4.0 to before version 4.14.4, a path traversal vulnerability in Wazuh's cluster synchronization extraction routine allows an authenticated cluster peer to write arbitrary files outside the...

9CVSS6.2AI score0.00399EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/04/29 12:0 a.m.12 views

Wazuh 路径遍历漏洞

Wazuh is an open-source application developed by Wazuh. It is used for collecting, summarizing, indexing, and analyzing security data, helping organizations detect intrusions, threats, and abnormal behaviors. Versions of Wazuh from 4.4.0 to 4.14.4 contained a path traversal vulnerability. This...

9.9CVSS6AI score0.00399EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/28 4:59 p.m.4 views

CVE-2025-15616

Wazuh wazuh-agent and wazuh-manager versions 2.1.0 before 4.8.0 contain multiple shell injection and untrusted search path vulnerabilities that allow attackers to execute arbitrary commands through various components including logcollector configuration, maild SMTP server tags, and Kaspersky AR...

7.2CVSS6.7AI score0.01625EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.7 views

Wazuh 安全漏洞

Wazuh is an open-source application developed by Wazuh. It is used for collecting, summarizing, indexing, and analyzing security data, helping organizations detect intrusions, threats, and abnormal behaviors. Version 4.12.0 of Wazuh contains a security vulnerability. This vulnerability stems from...

8.3CVSS5.8AI score0.00387EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.10 views

Wazuh 安全漏洞

Wazuh is an open-source application developed by Wazuh. It is used for collecting, summarizing, indexing, and analyzing security data, helping organizations detect intrusions, threats, and abnormal behaviors. Wazuh versions 4.7.3 and earlier contain security vulnerabilities. These vulnerabilities...

7.5CVSS5.8AI score0.00497EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/17 6:11 p.m.3 views

EUVD-2026-12621

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 4.4.0 and prior to version 4.14.3, a stack-based buffer overflow vulnerability exists in the Wazuh Database synchronization module wdbdeltaevent.c. The SQL query construction logic...

4.9CVSS6.3AI score0.00313EPSS
Exploits1References1
OSV
OSV
added 2026/03/17 6:2 p.m.3 views

CVE-2026-25770 Wazuh has Privilege Escalation to Root via Cluster Protocol File Write

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 3.9.0 and prior to version 4.14.3, a privilege escalation vulnerability exists in the Wazuh Manager's cluster synchronization protocol. The wazuh-clusterd service allows authenticated...

9.1CVSS6AI score0.00969EPSS
Exploits1References3
NVD
NVD
added 2025/11/21 6:15 p.m.7 views

CVE-2025-64483

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS0.00224EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.5 views

Wazuh 安全漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A security vulnerability exists in Wazuh versions prior to 4.13.0 that originates from an authenticated attacker w...

9.1CVSS7.9AI score0.00688EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.7 views

Wazuh 代码问题漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A code issue vulnerability exists in Wazuh versions 3.7.0 through prior to 4.12.0 that stems from the fimalert...

5.1CVSS6.7AI score0.00314EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/10/29 4:48 p.m.10 views

CVE-2025-62791 Wazuh vulnerable to NULL pointer dereference in DecodeCiscat

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, DecodeCiscat implementation does not check the return the value of cJSONGetObjectItem for a possible NULL value in case of an error. A compromised agent can cause a crash of analysisd by...

6.9CVSS0.00305EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/29 4:46 p.m.9 views

CVE-2025-62790 Wazuh vulnerable to NULL pointer dereference in fim_fetch_attributes_state

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fimfetchattributesstate implementation does not check whether timestring is NULL or not before calling strlen on it. A compromised agent can cause a crash of analysisd by sending a...

6.9CVSS0.00372EPSS
Exploits1References1
OSV
OSV
added 2025/10/29 4:46 p.m.5 views

CVE-2025-62790 Wazuh vulnerable to NULL pointer dereference in fim_fetch_attributes_state

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fimfetchattributesstate implementation does not check whether timestring is NULL or not before calling strlen on it. A compromised agent can cause a crash of analysisd by sending a...

6.9CVSS6.8AI score0.00372EPSS
Exploits1References3
CVE
CVE
added 2025/10/29 4:44 p.m.14 views

CVE-2025-62789

CVE-2025-62789 affects Wazuh before 4.11.0. The fim_alert() path does not check the return value of ctime_r before calling strdup(), enabling a NULL pointer dereference that can crash analysisd when a compromised/malicious agent sends a crafted message to the Wazuh manager. Impact is denial of se...

7.5CVSS6.3AI score0.00372EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/10/29 4:44 p.m.10 views

CVE-2025-62789 Wazuh vulnerable to NULL pointer dereference in fim_alert line 712

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fimalert implementation does not check whether the return value of ctimer is NULL or not before calling strdup on it. A compromised agent can cause a crash of analysisd by sending a...

6.9CVSS0.00372EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/10/29 4:42 p.m.6 views

CVE-2025-62788 Wazuh Vulnerable to Heap Use After Free in w_copy_event_for_log

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, wcopyeventforlog references memory initially allocated in OSCleanMSG after it has been freed. A compromised agent can potentially compromise the integrity of the application by sending a...

6.3CVSS6.5AI score0.00295EPSS
Exploits1References1
OSV
OSV
added 2025/10/29 4:42 p.m.6 views

CVE-2025-62788 Wazuh Vulnerable to Heap Use After Free in w_copy_event_for_log

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, wcopyeventforlog references memory initially allocated in OSCleanMSG after it has been freed. A compromised agent can potentially compromise the integrity of the application by sending a...

6.3CVSS6.8AI score0.00295EPSS
Exploits1References3
CVE
CVE
added 2025/10/29 4:30 p.m.19 views

CVE-2025-62787

Wazuh prior to version 4.10.2 is affected by a buffer over-read in DecodeWinevt() caused by an incorrect index when accessing child_attr[p]->attributes[j]. A compromised agent can cause a read past the end of the allocated buffer, potentially exposing sensitive data, particularly when analysis...

7.5CVSS6.4AI score0.00362EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/10/29 3:52 p.m.6 views

CVE-2025-62786 Wazuh Vulnerable to Heap-based Buffer Out-Of-Bounds WRITE in decode_win_permissions

Wazuh is a free and open source platform used for threat prevention, detection, and response. A heap-based out-of-bounds WRITE occurs in decodewinpermissions, resulting in writing a NULL byte 2 bytes before the start of the buffer allocated to decodedit. A compromised agent can potentially levera...

6.3CVSS8.2AI score0.00662EPSS
Exploits1References4
Rows per page
Query Builder