Wazuh API – Agent Configuration Has Improper Access Control in...

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Description

Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API – Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the /utils/configuration endpoint. These credentials can be used to register new agents within the same Wazuh tenant without requiring elevated permissions through the UI. This issue has been patched in version 4.13.0.

Basic Information

ID CVE-2025-64483

Source GitHub_M

Published Nov 21, 2025 at 17:55

Modified Nov 21, 2025 at 18:10

Affected Product

Vendor wazuh

Product wazuh-dashboard-plugins

Version >= 4.9.0, < 4.13.0

Affected Versions wazuh wazuh-dashboard-plugins >= 4.9.0, < 4.13.0

CWE Classification

CWE-284

References

github.com /wazuh/wazuh-dashboard-plugins/security/advisories/GHSA-gwf3-8gm3-qrmj

{
    "lastseen": "",
    "description": "Wazuh is a security detection, visibility, and compliance open source project. From version 4.9.0 to before 4.13.0, the Wazuh API \u2013 Agent Configuration in certain configurations allows authenticated users with read-only API roles to retrieve agent enrollment credentials through the /utils/configuration endpoint. These credentials can be used to register new agents within the same Wazuh tenant without requiring elevated permissions through the UI. This issue has been patched in version 4.13.0.",
    "published": "2025-11-21T17:55:33.219Z",
    "modified": "2025-11-21T18:10:54.710Z",
    "type": "cve",
    "title": "Wazuh API \u2013 Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint",
    "source": "GitHub_M",
    "references": "https://github.com/wazuh/wazuh-dashboard-plugins/security/advisories/GHSA-gwf3-8gm3-qrmj",
    "id": "CVE-2025-64483",
    "bulletinFamily": "",
    "cwe": [
        "CWE-284"
    ],
    "cvelist": null,
    "sourceData": "wazuh wazuh-dashboard-plugins >= 4.9.0, < 4.13.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "wazuh-dashboard-plugins",
    "version": ">= 4.9.0, < 4.13.0",
    "vendor": "wazuh",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint_CVE-2025-64483