cvedb.io
CVE-2025-62792
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2025-10-29T17:15:37.280 · Last modified 2026-06-17T09:52:28.417

Summary

Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.12.0, a buffer over-read occurs in w_expression_match() when strlen() is called on str_test, because the corresponding buffer is not being properly NULL terminated during its allocation in OS_CleanMSG(). A compromised agent can cause a READ operation beyond the end of the allocated buffer (which may contain sensitive information) by sending a specially crafted message to the wazuh manager. An attacker who is able to craft and send an agent message to the wazuh manager can cause a buffer over-read and potentially access sensitive data. This vulnerability is fixed in 4.12.0.

Affected products

wazuh — wazuh

Does this affect you?

Add your gear to cvedb and we'll alert you only when wazuh ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.