Wazuh Dashboard Plugins
Approved changes feed: RSS · Atom
cpe:2.3:a:wazuh:wazuh-dashboard-plugins:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Wazuh (a7402332-cdfc-5fc8-bb0e-3f511f6cb7fd) |
|---|---|
| Product | Wazuh Dashboard Plugins (bc7b8e3b-8677-5436-bbaf-cf46ddbc5fe5) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-64483 |
vulnerable | 2026-06-08 07:39:19.830714 |
Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint
Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the /utils/configuration endpoint. These credentials can be used to register new agents within the same Wazuh tenant without requiring elevated permissions through the UI. This issue has been patched in version 4.13.0.
Published: 2025-11-21T17:55:33.219Z
Updated: 2026-02-06T19:24:00.537Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.