Privilege Escalation in Wazuh Platform by Vulnerability in Access Control
CVE-2024-47770

4.6MEDIUM

Key Information:

Vendor: Wazuh
Status: Wazuh
Vendor: CVE Published:; 3 February 2025

What is CVE-2024-47770?

A significant vulnerability has been identified in the Wazuh platform, which is widely utilized for threat prevention, detection, and response across diverse environments. This vulnerability arises from inadequate privilege restrictions, enabling an attacker to escalate their access rights. As a result, users may find that an attacker is able to view sensitive information, such as the agent list on the Wazuh dashboard, without requiring appropriate permissions. The issue has been remediated in version 4.9.1, and users are strongly urged to upgrade to safeguard their systems, as there are currently no known workarounds to mitigate this risk.

Affected Version(s)

wazuh < 4.9.1

References

https://github.com/wazuh/wazuh/security/advisories/GHSA-6...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2025
Vulnerability Reserved
Sep 30, 2024