Wazuh API Vulnerability in Agent Configuration Affects Security Detection Software
CVE-2025-64483

5.3MEDIUM

Key Information:

Vendor: Wazuh
Status: Wazuh-dashboard-plugins
Vendor: CVE Published:; 21 November 2025

What is CVE-2025-64483?

The Wazuh API has a vulnerability in its Agent Configuration functionality, affecting versions 4.9.0 through before 4.13.0. In specific configurations, this flaw allows authenticated users with read-only API roles to access sensitive agent enrollment credentials via the /utils/configuration endpoint. These retrieved credentials can be exploited to register new agents within the same Wazuh tenant without the need for elevated permissions through the UI, posing a significant risk to system integrity and security. This vulnerability has been addressed in version 4.13.0.

Affected Version(s)

wazuh-dashboard-plugins >= 4.9.0, < 4.13.0

References

https://github.com/wazuh/wazuh-dashboard-plugins/security...

x_refsource_CONFIRM

CVSS V4

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Nov 21, 2025
Vulnerability Reserved
Nov 5, 2025

JSON