CVE-2026-34150

Source
https://cve.org/CVERecord?id=CVE-2026-34150
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-34150.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-34150
Aliases
  • GHSA-rvr9-89q8-w883
Published
2026-07-16T23:44:42.433Z
Modified
2026-07-18T03:46:49.422973731Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Wazuh: Heap buffer overflow in wazuh-analysisd via rootcheck event parsing
Details

Wazuh is a free and open source platform used for threat prevention, detection, and response. In versions 1.0.0 and above, prior to 4.14.5, a heap buffer overflow in wazuh-analysisd allows an unauthenticated remote attacker to crash the Wazuh manager's analysis engine, causing complete loss of SIEM alert processing. The attack exploits the default configuration shipped in the official wazuh/wazuh-docker deployment with default configuration. An attacker can enroll with authd without a password to obtain a valid agent ID and encryption key, connect to remoted over the Wazuh agent protocol, and inject rootcheck events containing  {key: value}  patterns longer than 30 bytes that trigger a sprintf overflow of a 30-byte buffer in WJSONParseRootcheck, corrupting the heap and crashing wazuh-analysisd so that all alert processing silently stops while the dashboard and API keep showing stale data.

Database specific
{
    "cwe_ids": [
        "CWE-122"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/34xxx/CVE-2026-34150.json",
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/wazuh/wazuh

Affected ranges

Type
GIT
Repo
https://github.com/wazuh/wazuh
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "extracted_events": [
        {
            "introduced": "1.0.0"
        },
        {
            "fixed": "4.14.5"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

coverity-w12-4.*
coverity-w12-4.14.5
coverity-w13-4.*
coverity-w13-4.14.5
coverity-w15-4.*
coverity-w15-4.14.5
v2.*
v2.0
v3.*
v3.1.0
v3.12.0
v3.13.0
v3.13.1
v3.2.0
v3.5.0
v3.6.0
v3.6.1
v3.7.0
v3.8.0
v4.*
v4.14.1
v4.14.3-rc1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-34150.json"