CVE-2024-57378

Name of the Vulnerable Software and Affected Versions Wazuh SIEM version 4.8.2

Description This issue is related to a broken access control vulnerability, allowing the unauthorized creation of internal users without assigning any existing user role. This could potentially lead to privilege escalation or unauthorized access to sensitive resources.

Recommendations For Wazuh SIEM version 4.8.2, consider restricting access to user creation functionality until a patch is available. As a temporary workaround, monitor user creation activities closely to detect and respond to potential unauthorized access attempts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.