CVE-2026-25769 – Wazuh
CVSS 9.1
CRITICAL
“With working exploit code out there, this isn’t theoretical—it’s actionable risk.”
Wazuh has released a patch addressing CVE-2026-25769, a critical vulnerability that exposes systems to severe compromise. The CVSS score is 9.1, which is Critical severity. This level of impact indicates attackers could gain deep control over affected environments, potentially leading to data exposure, system manipulation, or service disruption.
Proof-of-concept code is available, significantly increasing the likelihood of exploitation. While there is no confirmed real-world attack activity, the existence of working exploit code lowers the barrier for attackers and accelerates the risk timeline.
Key Details
- Affected Product
- Wazuh Wazuh
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- High
- User Interaction
- None
- CWE Classification
- CWE-502
Patch this CVE on all your endpoints in under 5 minutes.
First 200 endpoints are free forever, scale as needed.