CVE-2025-62789
HIGHDescription
Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to 4.11.0, fim_alert() implementation does not check whether the return value of ctime_r is NULL or not before calling strdup() on it. A compromised agent can cause a crash of analysisd by sending a specially crafted message to the wazuh manager. An attacker who is able to craft and send an agent message to the wazuh manager can cause analysisd to crash and make it unavailable. This vulnerability is fixed in 4.11.0.
Is your site exposed to CVE-2025-62789?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| wazuh | wazuh |
References
Frequently Asked Questions
What is CVE-2025-62789? +
How severe is CVE-2025-62789? +
What products are affected by CVE-2025-62789? +
How do I check if I'm vulnerable to CVE-2025-62789? +
Related Vulnerabilities
An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an …
The Ember ZNet stack’s packet buffer manager may read out of bound memory leading to an assert, causing a Denial …
An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary …
Fiber Utils is a collection of common functions created for Fiber. In versions 2.0.0-rc.3 and below, when the system's cryptographic …
Unchecked return value can allow Apache Traffic Server to retain privileges on startup. This issue affects Apache Traffic Server: from …
In International Color Consortium DemoIccMAX before 85ce74e, a logic flaw in CIccTagXmlProfileSequenceId::ParseXml in IccXML/IccLibXML/IccTagXml.cpp results in unconditionally returning false.