CVE-2026-26204 | Wazuh up to 4.14.3 Alert GetAlertData buffer underflow (GHSA-j4c7-hwjw-8857)

Inserito da Angelo Barbosa | Apr 29, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Wazuh up to 4.14.3. This impacts the function GetAlertData of the component Alert Handler. This manipulation causes buffer underwrite.

This vulnerability appears as CVE-2026-26204. The attack requires local access. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-26204 | Wazuh up to 4.14.3 Alert GetAlertData buffer underflow (GHSA-j4c7-hwjw-8857)

Post correlati

CVE-2026-32116 | magic-wormhole up to 0.22.x ~/.ssh/authorized_keys path traversal

CVE-2026-4211 | D-Link DNS-1550-04 up to 20260205 local_backup_mgr.cgi Local_Backup_Info f_idx stack-based overflow

CVE-2024-43800 | expressjs serve-static up to 1.15.x/2.0.x redirect cross site scripting (GHSA-cm22-4g7w-348p)

CVE-2024-53979 | zhmcclient zhmc-ansible-modules up to 1.9.2 Ansible Module cleartext storage (GHSA-mw6c-f428-jx4f)