Wazuh Security Vulnerabilities (CVEs)
Track 14 security vulnerabilities affecting Wazuh products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows a compromised Wazuh agent to crash the analysisd service on the Wazuh manager by sending a specially crafted message. It aff...
Nov 21, 2025This vulnerability exposes the Wazuh agent authentication password file to all authenticated users on Windows systems, allowing local attackers to rea...
Nov 21, 2025This vulnerability in Wazuh Agent allows authenticated attackers to force NTLM authentication through malicious UNC paths in agent configuration setti...
Nov 21, 2025A buffer over-read vulnerability in Wazuh allows compromised agents or attackers who can send crafted messages to the Wazuh manager to read beyond all...
Oct 29, 2025A buffer over-read vulnerability in Wazuh's DecodeWinevt() function allows compromised agents to trigger read operations beyond allocated buffer bound...
Oct 29, 2025This is a use-after-free vulnerability in Wazuh's w_copy_event_for_log() function that allows compromised agents to send specially crafted messages to...
Oct 29, 2025A NULL pointer dereference vulnerability in Wazuh's analysisd component allows a compromised agent to crash the manager by sending a specially crafted...
Oct 29, 2025A NULL pointer dereference vulnerability in Wazuh's fillData() function allows compromised agents to crash the analysisd service by sending specially ...
Oct 29, 2025A heap-based out-of-bounds write vulnerability in Wazuh's decode_win_permissions function allows writing a NULL byte before an allocated buffer. Compr...
Oct 29, 2025This CVE describes a local privilege escalation vulnerability in Wazuh Windows agent where improper ACLs on non-default installation directories allow...
Feb 3, 2025This vulnerability in Wazuh allows attackers with no privilege access to view the agent list on the Wazuh dashboard, potentially enabling privilege es...
Feb 3, 2025This vulnerability in Wazuh's host_deny script allows attackers to inject arbitrary commands into the /etc/hosts.deny file, leading to arbitrary comma...
Apr 19, 2024A buffer overflow vulnerability in Wazuh Manager's analysisd component allows remote code execution when processing Unicode characters from Windows Ev...
Apr 19, 2024CVE-2021-44079 is a command injection vulnerability in Wazuh's wazuh-slack active response script that allows remote code execution by passing untrust...
Nov 22, 2021Why Monitor Wazuh Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 14+ known vulnerabilities affecting Wazuh products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Wazuh packages in under 60 seconds. No agents required - completely agentless scanning that works across Wazuh deployments.
Free vulnerability database: Access detailed information about every Wazuh CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Wazuh CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
