CVE-2025-64169

CVSS v4.0

5.1

Medium

Vector

AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Wazuh versions 3.7.0 through 4.11.9

Description Wazuh is a platform for threat prevention, detection, and response. A flaw exists in the fim alert() implementation where it does not verify if oldsum->md5 is NULL before attempting to access it. A compromised agent can exploit this by sending a crafted message to the Wazuh manager, potentially causing a crash of the analysisd component.

Recommendations Update Wazuh to version 4.12.0 or later.

Exploit

Fix

Unchecked Return Value

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-252CWE-476

Related Identifiers

BDU:2025-14829

CVE-2025-64169

GHSA-HC35-H924-8596

Affected Products

Wazuh

CVE-2025-64169

Weakness Enumeration

Related Identifiers

Affected Products

References · 6