Memory Dereference Vulnerability in Wazuh by Open Source Vendor
CVE-2025-64169

5.1MEDIUM

Key Information:

Vendor: Wazuh
Status: Wazuh
Vendor: CVE Published:; 21 November 2025

What is CVE-2025-64169?

The Wazuh platform, used for threat prevention and detection, is vulnerable due to a flaw in the fim_alert() function. The implementation fails to properly check if oldsum->md5 is NULL before dereferencing it. This oversight could allow a malicious agent to crash the analysisd service by sending a specially crafted message to the Wazuh manager, potentially disrupting security operations. This vulnerability affects versions 3.7.0 through 4.11.0 and has been resolved in version 4.12.0.

Affected Version(s)

wazuh >= 3.7.0, < 4.12.0

References

https://github.com/wazuh/wazuh/security/advisories/GHSA-h...

x_refsource_CONFIRM

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 21, 2025
Vulnerability Reserved
Oct 28, 2025

JSON