CVE-2025-54866 | Wazuh up to 4.12.x authd.pass default permission (GHSA-mvfx-ph7m-qm37)

A vulnerability marked as critical has been reported in Wazuh up to 4.12.x. Affected by this vulnerability is an unknown functionality of the file C:Program Files (x86)ossec-agentauthd.pass. Performing manipulation results in incorrect default permissions.

This vulnerability is reported as CVE-2025-54866. The attack requires a local approach. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More