Arbitrary Code Execution via Wazuh API in Wazuh 4.0.0 to 4.0.3

Arbitrary Code Execution via Wazuh API in Wazuh 4.0.0 to 4.0.3

CVE-2021-26814 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit incomplete input validation on the /manager/files API to inject arbitrary code within the API service script.

Learn more about our Api Penetration Testing.