CVE-2025-64483 MEDIUM

CVE-2025-64483: Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint

Vendor Wazuh

Product wazuh-dashboard-plugins

Weakness CWE-284

Published November 21, 2025

Last update February 6, 2026

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the /utils/configuration endpoint. These credentials can be used to register new agents within the same Wazuh tenant without requiring elevated permissions through the UI. This issue has been patched in version 4.13.0.

Key dates

02Disclosure timeline

November 21, 2025 CVE published

February 6, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-64483 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

CVE-2025-64483: Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint

01Description

02Disclosure timeline

03References

04Related CVE