Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/03/17 12:0 a.m.11 views

Wazuh 安全漏洞

Wazuh is an open-source application developed by Wazuh. It is used for collecting, summarizing, indexing, and analyzing security data, helping organizations detect intrusions, threats, and abnormal behaviors. Versions of Wazuh from 3.9.0 to 4.14.3 contained security vulnerabilities. These...

9.1CVSS6.5AI score0.00969EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.16 views

PT-2026-25922

Name of the Vulnerable Software and Affected Versions Wazuh versions 4.0.0 through 4.14.2 Description Wazuh is a free and open source platform used for threat prevention, detection, and response. A Remote Code Execution RCE issue exists due to the deserialization of untrusted data within the...

9.1CVSS6.1AI score0.09246EPSS
Exploits4References37
RedhatCVE
RedhatCVE
added 2025/05/22 11:24 p.m.17 views

CVE-2022-40497

Wazuh v3.6.1 - v3.13.5, v4.0.0 - v4.2.7, and v4.3.0 - v4.3.7 were discovered to contain an authenticated remote code execution RCE vulnerability via the Active Response endpoint...

8.8CVSS8.2AI score0.0128EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/03 12:0 a.m.4 views

PT-2025-2774 · Wazuh +1 · Wazuh +1

Name of the Vulnerable Software and Affected Versions: Wazuh versions prior to 4.9.1 Description: This issue occurs when the system has weak privilege access, allowing an attacker to perform privilege escalation. As a result, an attacker can view the agent list on the Wazuh dashboard without...

10CVSS6.5AI score0.02652EPSS
Exploits4References81
Rows per page
Query Builder