Heap-Buffer Overflow Vulnerability in Wazuh Authd
CVE-2023-7340

5.3MEDIUM

Key Information:

Vendor: Wazuh
Status: Wazuh
Vendor: CVE Published:; 27 March 2026

What is CVE-2023-7340?

The Wazuh authentication daemon (authd) is susceptible to a heap-buffer overflow vulnerability that could be exploited by an attacker sending specially crafted inputs. This flaw may lead to memory corruption, allowing attackers to manipulate heap data and potentially induce a denial-of-service condition, thereby impacting the availability of the authentication services. Proper measures should be adopted to protect against unauthorized input to mitigate these risks.

Affected Version(s)

Wazuh Linux 3.5.0 <= 4.3.10

References

https://github.com/wazuh/wazuh/security/advisories/GHSA-g...

vendor-advisory

https://www.vulncheck.com/advisories/heap-buffer-overflow...

third-party-advisory

CVSS V4

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 27, 2026
Vulnerability Reserved
Mar 27, 2026

Credit

Reported by @vikman90; credited to @stasos24.

CVE-2023-7340 Data

JSON