URL has been copied successfully!
Critical Wazuh Flaw Enables Threat Actors to Alter Alerts and Remove Logs
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Critical Wazuh Flaw Enables Threat Actors to Alter Alerts and Remove Logs


Tags: , , , , , , ,

A critical security flaw in Wazuh Manager could allow unauthenticated threat actors to tamper with alerts, delete forensic evidence, and execute arbitrary OpenSearch operations by exploiting an input validation weakness in the platform’s new inventory synchronization pipeline. Tracked under GitHub advisory GHSA-ff9g-85jq-r3g3, the vulnerability affects Wazuh Manager version 5.0.0-beta1 and carries a maximum CVSS score […] The post Critical Wazuh Flaw Enables Threat Actors to Alter Alerts and Remove Logs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/critical-wazuh-flaw/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Beyond CVE: The hunt for other sources of vulnerability intel
  2. Auf der Suche nach Alternativen zum CVE-Programm
  3. GoAnywhere 0-Day RCE Actively Exploited to Deliver Medusa Ransomware
  4. Attackers exploit critical Langflow RCE within hours as CISA sounds alarm