Wazuh Multiple Vulnerabilities - Remote Code Execution and DoS
Summary
CERT-Bund issued security advisory WID-SEC-2026-0908 warning of multiple vulnerabilities in Wazuh security monitoring platform (CVSS 6.7 medium severity). The vulnerabilities allow remote attackers to execute arbitrary code, perform denial of service attacks, manipulate data, and disclose confidential information. Affected versions include Wazuh prior to 4.13.0, 4.3.11, 4.14.0, and Wazuh Manager/Agent prior to 4.8.0.
What changed
CERT-Bund identified multiple security vulnerabilities in Wazuh, an open-source security monitoring platform used for intrusion detection, log analysis, and SIEM functions. The vulnerabilities carry a CVSS Base Score of 6.7 (medium) and temporal score of 6.0, with remote attack capability confirmed. Threat actors can exploit these flaws to conduct denial of service attacks, execute arbitrary code, manipulate data, and disclose sensitive information.
Organizations using Wazuh should immediately identify whether they are running affected versions (Open Source Wazuh <4.13.0, <4.3.11, <4.14.0, or Manager/Agent <4.8.0) and apply appropriate mitigations or updates. Since this is an open-source platform commonly deployed in enterprise security infrastructure, both private sector technology companies and government agencies should prioritize patching. No specific compliance deadline was provided in the advisory.
What to do next
- Identify all Wazuh installations in your environment and check version numbers
- Upgrade Wazuh installations to patched versions (4.13.0, 4.3.11, 4.14.0, or 4.8.0 and above for Manager/Agent)
- Review access controls and network exposure for Wazuh components given remote attack vector
Archived snapshot
Mar 30, 2026GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.
[WID-SEC-2026-0908] Wazuh: Mehrere Schwachstellen CVSS Base Score 6.7 (mittel) CVSS Temporal Score 6.0 (mittel) Remoteangriff ja Datum 29.03.2026 Stand 30.03.2026 Mitigation ja
Betroffene Systeme
Betriebssystem
- Sonstiges
- UNIX
Produktbeschreibung
Wazuh ist eine Sicherheitsüberwachungsplattform, die Funktionen wie Intrusion Detection, Log-Analyse und Sicherheitsinformations- und Ereignismanagement (SIEM) bietet.
Produkte
29.03.2026
- Open Source Wazuh <4.13.0
Open Source Wazuh <4.3.11
Open Source Wazuh <4.14.0
Open Source Wazuh Manager <4.8.0
Open Source Wazuh Agent <4.8.0
Angriff
Angriff
Ein Angreifer kann mehrere Schwachstellen in Wazuh ausnutzen, um einen Denial of Service Angriff durchzuführen, beliebigen Code auszuführen, Daten zu manipulieren und vertrauliche Informationen offenzulegen. CVE Informationen Versionshistorie Feedback zum Advisory geben
Named provisions
Related changes
Get daily alerts for CERT-Bund Security Advisories
Daily digest delivered to your inbox.
Free. Unsubscribe anytime.
Source
About this page
Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission
Source document text, dates, docket IDs, and authority are extracted directly from CERT-Bund.
The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.
Classification
Who this affects
Taxonomy
Browse Categories
Get alerts for this source
We'll email you when CERT-Bund Security Advisories publishes new changes.
Subscribed!
Optional. Filters your digest to exactly the updates that matter to you.