Lucene search
+L

7 matches found

redhatcve
redhatcve
added 2025/11/26 4:56 p.m.5 views

CVE-2025-64483

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS6.6AI score0.00228EPSS
Exploits0References1
nvd
nvd
added 2025/11/21 6:15 p.m.8 views

CVE-2025-64483

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS0.00228EPSS
Exploits0References2
cvelist
cvelist
added 2025/11/21 5:55 p.m.16 views

CVE-2025-64483 Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS0.00228EPSS
Exploits0References2
euvd
euvd
added 2025/11/21 5:55 p.m.3 views

EUVD-2025-198510

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS6.2AI score0.00228EPSS
Exploits0References1
cve
cve
added 2025/11/21 5:55 p.m.12 views

CVE-2025-64483

CVE-2025-64483 affects Wazuh (4.9.0–before 4.13.0) via the Wazuh API – Agent Configuration endpoint. In certain configurations, authenticated users with read-only API roles could retrieve agent enrollment credentials through the /utils/configuration endpoint, enabling registration of new agents w...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/11/21 5:55 p.m.3 views

CVE-2025-64483 Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/11/05 12:0 a.m.9 views

PT-2025-47791

Name of the Vulnerable Software and Affected Versions Wazuh versions 4.9.0 through 4.12.9 Description Wazuh, a security detection, visibility, and compliance open source project, has an issue where the API – Agent Configuration, in specific setups, permits authenticated users with read-only API...

6.5CVSS5.4AI score0.00228EPSS
Exploits0References9
Rows per page
Query Builder