CVE-2025-59938 MEDIUM

CVE-2025-59938: Heap buffer overflow in wazuh-analysisd

Vendor Wazuh
Product wazuh
Weakness CWE-122
Published September 27, 2025
Last update September 29, 2025

CVSS base score

6.5/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Wazuh is a free and open source platform used for threat prevention, detection, and response. In versions starting from 3.8.0 to before 4.11.0, wazuh-analysisd is vulnerable to a heap buffer overflow when parsing XML elements from Windows EventChannel messages. This issue has been patched in version 4.11.0.

Key dates

02Disclosure timeline

September 27, 2025 CVE published
September 29, 2025 Record updated