Vulnerabilities > Wazuh > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-19 | CVE-2024-32038 | Out-of-bounds Write vulnerability in Wazuh Wazuh is a free and open source platform used for threat prevention, detection, and response. | 9.8 |
| 2021-11-22 | CVE-2021-44079 | Command Injection vulnerability in Wazuh In the wazuh-slack active response script in Wazuh 4.2.x before 4.2.5, untrusted user agents are passed to a curl command line, potentially resulting in remote code execution. | 9.8 |