VYPR

Wazuh

by Wazuh

Source repositories

CVEs (43)

  • CVE-2026-25769Mar 17, 2026
    risk 0.00cvss epss 0.09

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Versions 4.0.0 through 4.14.2 have a Remote Code Execution (RCE) vulnerability due to Deserialization of Untrusted Data). All Wazuh deployments using cluster mode (master/worker…

  • CVE-2025-64169Nov 21, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 3.7.0 to before 4.12.0, fim_alert() implementation does not check whether oldsum->md5 is NULL or not before dereferencing it. A compromised agent can cause a crash of…

  • CVE-2025-54866Nov 21, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.3.0 to before 4.13.0, a missing ACL on "C:\Program Files (x86)\ossec-agent\authd.pass" exposes the password to all "Authenticated Users" on the local machine. This issue…

  • CVE-2025-30201Nov 21, 2025
    risk 0.00cvss epss 0.01

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to version 4.13.0, a vulnerability in Wazuh Agent allows authenticated attackers to force NTLM authentication through malicious UNC paths in various agent configuration settings,…

  • CVE-2025-62792Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.12.0, a buffer over-read occurs in w_expression_match() when strlen() is called on str_test, because the corresponding buffer is not being properly NULL terminated during its…

  • CVE-2025-62791Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, DecodeCiscat() implementation does not check the return the value of cJSON_GetObjectItem() for a possible NULL value in case of an error. A compromised agent can cause…

  • CVE-2025-62790Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fim_fetch_attributes_state() implementation does not check whether time_string is NULL or not before calling strlen() on it. A compromised agent can cause a crash of…

  • CVE-2025-62789Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fim_alert() implementation does not check whether the return value of ctime_r is NULL or not before calling strdup() on it. A compromised agent can cause a crash of…

  • CVE-2025-62788Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, w_copy_event_for_log() references memory (initially allocated in OS_CleanMSG()) after it has been freed. A compromised agent can potentially compromise the integrity of…

  • CVE-2025-62787Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.10.2, a buffer over-read occurs in DecodeWinevt() when child_attr[p]->attributes[j] is accessed, because the corresponding index (j) is incorrect. A compromised agent can…

  • CVE-2025-62786Oct 29, 2025
    risk 0.00cvss epss 0.01

    Wazuh is a free and open source platform used for threat prevention, detection, and response. A heap-based out-of-bounds WRITE occurs in decode_win_permissions, resulting in writing a NULL byte 2 bytes before the start of the buffer allocated to decoded_it. A compromised agent…

  • CVE-2025-62785Oct 29, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. fillData() implementation does not check whether value is NULL or not before calling os_strdup() on it. A compromised agent can cause a crash of analysisd by sending a specially crafted…

  • CVE-2025-59938Sep 27, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. In versions starting from 3.8.0 to before 4.11.0, wazuh-analysisd is vulnerable to a heap buffer overflow when parsing XML elements from Windows EventChannel messages. This issue has…

  • CVE-2024-1243Jun 11, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in the Wazuh agent for Windows prior to version 4.8.0 allows an attacker with control over the Wazuh server or agent key to configure the agent to connect to a malicious UNC path. This results in the leakage of the machine account NetNTLMv2 hash, which…

  • CVE-2024-35177Feb 3, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege…

  • CVE-2024-47770Feb 3, 2025
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. This vulnerability occurs when the system has weak privilege access,…

  • CVE-2024-32038Apr 19, 2024
    risk 0.00cvss epss 0.01

    Wazuh is a free and open source platform used for threat prevention, detection, and response. There is a buffer overflow hazard in wazuh-analysisd when handling Unicode characters from Windows Eventchannel messages. It impacts Wazuh Manager 3.8.0 and above. This vulnerability is…

  • CVE-2023-49275Apr 19, 2024
    risk 0.00cvss epss 0.01

    Wazuh is a free and open source platform used for threat prevention, detection, and response. A NULL pointer dereference was detected during fuzzing of the analysis engine, allowing malicious clients to DoS the analysis engine. The bug occurs when `analysisd` receives a…

  • CVE-2023-42463Jan 12, 2024
    risk 0.00cvss epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. This bug introduced a stack overflow hazard that could allow a local privilege escalation. This vulnerability was patched in version 4.5.3.

  • CVE-2023-42455Oct 9, 2023
    risk 0.00cvss epss 0.01

    Wazuh is a security detection, visibility, and compliance open source project. In versions 4.4.0 and 4.4.1, it is possible to get the Wazuh API administrator key used by the Dashboard using the browser development tools. This allows a logged user to the dashboard to become…