Vikman90

**Name of the Vulnerable Software and Affected Versions** Wazuh version 4.12.0 **Description** Wazuh version 4.12.0 has an issue where the `GITHUB TOKEN` can be extracted from uploaded artifacts in GitHub Actions workflows. This allows attackers to potentially perform unauthorized actions, such as pushing malicious commits or altering release tags, within a limited timeframe. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wazuh (affected versions not specified) **Description** The software contains an insecure transport issue due to the use of the `-k` or `--insecure` flag with `curl`, which disables SSL/TLS certificate validation. This allows attackers with network access to conduct man-in-the-middle attacks, potentially intercepting and modifying downloaded dependencies or code during the build process. Successful exploitation could lead to remote code execution and compromise the supply chain. The vulnerable component is the `curl` command used within the provisioning scripts and Dockerfiles. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.