CVE-2026-32984

Medium CVSS: 5.3

Wazuh authd contains a heap-buffer overflow vulnerability that allows attackers to cause memory corruption and malformed heap data by sending specially crafted input. Attackers can exploit this vulnerability to trigger a denial of service condition, resulting in low availability impact to the authentication daemon.

Vendor

Wazuh

Product

Wazuh

CWE

CWE-125

Yayın Tarihi

2026-03-27 16:16:24

Güncelleme

2026-03-31 18:29:15

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-125 Wazuh MEDIUM Wazuh 2026

Referanslar

https://github.com/advisories/GHSA-grjq-p5fg-m24r https://www.vulncheck.com/advisories/heap-buffer-overflow-in-wazuh-authd

Benzer Kayıtlar

High

CVE-2025-15617

Wazuh version 4.12.0 contains an exposure vulnerability in GitHub Actions workflow artifacts that allows attackers to ex…

Medium

CVE-2025-15615

Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-i…

High

CVE-2025-15616

Wazuh wazuh-agent and wazuh-manager versions 2.1.0 before 4.8.0 contain multiple shell injection and untrusted search pa…

Medium

CVE-2026-32983

Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-i…

Medium

CVE-2023-7340

Wazuh authd contains a heap-buffer overflow vulnerability that allows attackers to cause memory corruption and malformed…

Medium

CVE-2026-25771

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 4.3.0…