Vulnerabilities > Wazuh > Wazuh > 3.9.2

DATE CVE VULNERABILITY TITLE RISK
2024-04-19 CVE-2023-49275 NULL Pointer Dereference vulnerability in Wazuh
Wazuh is a free and open source platform used for threat prevention, detection, and response.
network
low complexity
wazuh CWE-476
6.5
2024-04-19 CVE-2024-32038 Out-of-bounds Write vulnerability in Wazuh
Wazuh is a free and open source platform used for threat prevention, detection, and response.
network
low complexity
wazuh CWE-787
critical
9.8
2024-01-12 CVE-2023-42463 Unspecified vulnerability in Wazuh
Wazuh is a free and open source platform used for threat prevention, detection, and response.
local
low complexity
wazuh
7.8
2022-09-28 CVE-2022-40497 Unspecified vulnerability in Wazuh
Wazuh v3.6.1 - v3.13.5, v4.0.0 - v4.2.7, and v4.3.0 - v4.3.7 were discovered to contain an authenticated remote code execution (RCE) vulnerability via the Active Response endpoint.
network
low complexity
wazuh
8.8
2021-09-29 CVE-2021-41821 Integer Underflow (Wrap or Wraparound) vulnerability in Wazuh
Wazuh Manager in Wazuh through 4.1.5 is affected by a remote Integer Underflow vulnerability that might lead to denial of service.
network
low complexity
wazuh CWE-191
6.5