Wazuh is a free and open source platform used for threat prevention, detection, and response. A NULL pointer dereference was detected during fuzzing of the analysis engine, allowing malicious clients to DoS the analysis engine. The bug occurs when `analysisd` receives a syscollector message with the `hotfix` `msg_type` but lacking a `timestamp`. It uses `cJSON_GetObjectItem()` to get the `timestamp` object item and dereferences it without checking for a `NULL` value. A malicious client can DoS the analysis engine. This vulnerability is fixed in 4.7.1.
References
Configurations
No configuration.
History
19 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-19 15:15
Updated : 2024-04-19 16:19
NVD link : CVE-2023-49275
Mitre link : CVE-2023-49275
CVE.ORG link : CVE-2023-49275
JSON object : View
Products Affected
No product.
CWE
CWE-476
NULL Pointer Dereference