Wazuh Authd Heap-Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A heap-buffer overflow vulnerability has been identified in the Wazuh authentication daemon (authd) versions through 3.5.0 and 4.3.10. This vulnerability allows attackers to send specially crafted input that causes memory corruption and creates malformed heap data. Exploitation of this issue can trigger a denial-of-service condition, significantly impacting the availability of the authentication daemon.

Impact

Exploitation of this vulnerability causes memory corruption and heap data mismanagement, leading to a denial-of-service condition that disrupts the Wazuh authentication daemon.

Added: Mar 27, 2026, 4:20 PM

Updated: Mar 27, 2026, 4:20 PM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

0.6

exploitability

7.4

remediation

0.0

relevance

4.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

0.6

exploitability

7.4

remediation

0.0

relevance

4.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Wazuh Authd Heap-Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Wazuh authd

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating