CVE-2026-41499

Medienbericht

EPSS 0.25%
Veröffentlicht 29.04.2026 18:01:25
Zuletzt bearbeitet 01.05.2026 13:01:08
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Wazuh: Multiple Heap-based NULL WRITE Buffer Underflows in parse_uname_string()

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, multiple heap-based out-of-bounds WRITE vulnerabilities exist in parse_uname_string() (remoted_op.c). This function processes OS identification data from agents and contains a dangerous code pattern that appears in 4 locations within the same function: writing to strlen(ptr) - 1 without checking for empty strings. When the string is empty, strlen() returns 0, and 0 - 1 wraps to SIZE_MAX due to unsigned integer underflow. Due to pointer arithmetic wrapping, SIZE_MAX effectively becomes -1, causing a write exactly 1 byte before the allocated buffer. This corrupts heap metadata (e.g., the chunk size field in glibc malloc), leading to heap corruption. This issue has been patched in version 4.14.4.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 6

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wazuh ≫ Wazuh Version >= 4.0.0 < 4.14.4

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.25%	0.165

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-124 Buffer Underwrite ('Buffer Underflow')

The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.

CWE-191 Integer Underflow (Wrap or Wraparound)

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.

VulnDex Intel

Media Report

08.05.2026 16:46

https://github.com/wazuh/wazuh/releases/tag/v4.14.4

Release Notes

https://github.com/wazuh/wazuh/security/advisories/GHSA-qvqj-p8mm-r7h3

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-41499

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-41499

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-41499

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-41499