CVE-2022-40497
- EPSS 1.23%
- Veröffentlicht 28.09.2022 00:15:09
- Zuletzt bearbeitet 21.05.2025 15:16:00
Wazuh v3.6.1 - v3.13.5, v4.0.0 - v4.2.7, and v4.3.0 - v4.3.7 were discovered to contain an authenticated remote code execution (RCE) vulnerability via the Active Response endpoint.
CVE-2021-44079
- EPSS 3.29%
- Veröffentlicht 22.11.2021 07:15:07
- Zuletzt bearbeitet 21.11.2024 06:30:20
In the wazuh-slack active response script in Wazuh 4.2.x before 4.2.5, untrusted user agents are passed to a curl command line, potentially resulting in remote code execution.
CVE-2021-41821
- EPSS 1.08%
- Veröffentlicht 29.09.2021 23:15:07
- Zuletzt bearbeitet 21.11.2024 06:26:49
Wazuh Manager in Wazuh through 4.1.5 is affected by a remote Integer Underflow vulnerability that might lead to denial of service. A crafted message must be sent from an authenticated agent to the manager.
CVE-2021-26814
- EPSS 8.75%
- Veröffentlicht 06.03.2021 02:15:12
- Zuletzt bearbeitet 21.11.2024 05:56:51
Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit incomplete input validation on the /manager/files API ...
CVE-2018-19666
- EPSS 0.78%
- Veröffentlicht 29.11.2018 08:29:00
- Zuletzt bearbeitet 21.11.2024 03:58:23
The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.