A critical security vulnerability has been disclosed in Wazuh Manager 5.0, allowing any enrolled agent to smuggle arbitrary OpenSearch bulk operations through an unsanitized flatbuffer field, enabling attackers to delete alerts, destroy forensic evidence, and tamper with SIEM data across an entire deployment. Published last week as GHSA-ff9g-85jq-r3g3, it carries a maximum CVSS 3.1 score of 10.0 […]
The post Critical Wazuh Flaw Enables Alert Tampering and Evidence Deletion appeared first on Cyber Security News.