Information Disclosure Vulnerability in Wazuh by Open Source Vendor
CVE-2025-62791

6.9MEDIUM

Key Information:

Vendor: Wazuh
Status: Wazuh
Vendor: CVE Published:; 29 October 2025

What is CVE-2025-62791?

The Wazuh platform, which serves as a free and open-source solution for threat prevention, detection, and response, is impacted by a flaw in the DecodeCiscat() function. This issue arises from the failure to validate the return value of cJSON_GetObjectItem(), potentially leading to a NULL value during error conditions. An attacker could exploit this by sending a specially crafted message to the Wazuh manager, resulting in the crash of the analysisd component and disrupting the service. This vulnerability has been addressed in version 4.11.0.

Affected Version(s)

wazuh < 4.11.0

References

https://github.com/wazuh/wazuh/security/advisories/GHSA-g...

x_refsource_CONFIRM

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Oct 29, 2025
Vulnerability Reserved
Oct 22, 2025

JSON