[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-35177":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":848,"aliases":858,"duplicate_of":9,"upstream":861,"downstream":862,"duplicates":867,"related":868,"reserved_at":9,"published_at":871,"modified_at":872,"state":873,"summary":874,"references_raw":882,"kevs":898,"epss":899,"epss_history":902,"metrics":1168,"affected":1176},"CVE-2024-35177","Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege Escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by placing one of the many DLL that are loaded and not present on the system in the installation folder of the agent OR by replacing the service executable binary itself with a malicious one. The root cause is an improper ACL applied on the installation folder when a non-default installation path is specified (e.g,: C:\\wazuh). Many DLLs are loaded from the installation folder and by creating a malicious DLLs that exports the functions of a legit one (and that is not found on the system where the agent is installed, such as rsync.dll) it is possible to escalate privileges from a low-privileged user and obtain code execution under the context of NT AUTHORITY\\SYSTEM. This issue has been addressed in version 4.9.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-284","Improper Access Control","The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.","weakness","Incomplete","Pillar",[19,106,110,160,173,177,181,185,189,232,271,381,398,501,521,525,685],{"id":20,"name":21,"techniques":22},"CAPEC-19","Embedding Scripts within Scripts",[23,34,99],{"id":24,"name":25,"tactics":26,"countermeasures":33},"T1027.009","Embedded Payloads",[27,30],{"id":28,"name":29},"TA0030","Defense Evasion",{"id":31,"name":32},"TA0005","Stealth",[],{"id":35,"name":36,"tactics":37,"countermeasures":44},"T1546.004","Unix Shell Configuration Modification",[38,41],{"id":39,"name":40},"TA0111","Privilege Escalation",{"id":42,"name":43},"TA0110","Persistence",[45,50,54,58,63,68,73,78,83,87,91,95],{"id":46,"name":47,"tactic":48},"D3-FA","File Analysis",{"name":49},"Detect",{"id":51,"name":52,"tactic":53},"D3-FIM","File Integrity Monitoring",{"name":49},{"id":55,"name":56,"tactic":57},"D3-USICA","User Session Init Config Analysis",{"name":49},{"id":59,"name":60,"tactic":61},"D3-FEV","File Eviction",{"name":62},"Evict",{"id":64,"name":65,"tactic":66},"D3-DF","Decoy File",{"name":67},"Deceive",{"id":69,"name":70,"tactic":71},"D3-FE","File Encryption",{"name":72},"Harden",{"id":74,"name":75,"tactic":76},"D3-RF","Restore File",{"name":77},"Restore",{"id":79,"name":80,"tactic":81},"D3-CF","Content Filtering",{"name":82},"Isolate",{"id":84,"name":85,"tactic":86},"D3-LFP","Local File Permissions",{"name":82},{"id":88,"name":89,"tactic":90},"D3-RFAM","Remote File Access Mediation",{"name":82},{"id":92,"name":93,"tactic":94},"D3-CQ","Content Quarantine",{"name":82},{"id":96,"name":97,"tactic":98},"D3-CM","Content Modification",{"name":82},{"id":100,"name":101,"tactics":102,"countermeasures":105},"T1546.016","Installer Packages",[103,104],{"id":39,"name":40},{"id":42,"name":43},[],{"id":107,"name":108,"techniques":109},"CAPEC-441","Malicious Logic Insertion",[],{"id":111,"name":112,"techniques":113},"CAPEC-478","Modification of Windows Service Configuration",[114,141],{"id":115,"name":116,"tactics":117,"countermeasures":125},"T1574.011","Services Registry Permissions Weakness",[118,119,120,121,122],{"id":42,"name":43},{"id":39,"name":40},{"id":28,"name":29},{"id":31,"name":32},{"id":123,"name":124},"TA0104","Execution",[126,131,135,139],{"id":127,"name":128,"tactic":129},"D3-CI","Configuration Inventory",{"name":130},"Model",{"id":132,"name":133,"tactic":134},"D3-SICA","System Init Config Analysis",{"name":49},{"id":136,"name":137,"tactic":138},"D3-RC","Restore Configuration",{"name":77},{"id":92,"name":93,"tactic":140},{"name":82},{"id":142,"name":143,"tactics":144,"countermeasures":147},"T1543.003","Windows Service",[145,146],{"id":42,"name":43},{"id":39,"name":40},[148,152,156],{"id":149,"name":150,"tactic":151},"D3-DI","Data Inventory",{"name":130},{"id":153,"name":154,"tactic":155},"D3-SCP","System Configuration Permissions",{"name":72},{"id":157,"name":158,"tactic":159},"D3-RD","Restore Database",{"name":77},{"id":161,"name":162,"techniques":163},"CAPEC-479","Malicious Root Certificate",[164],{"id":165,"name":166,"tactics":167,"countermeasures":172},"T1553.004","Install Root Certificate",[168,169],{"id":28,"name":29},{"id":170,"name":171},"TA0112","Defense Impairment",[],{"id":174,"name":175,"techniques":176},"CAPEC-502","Intent Spoof",[],{"id":178,"name":179,"techniques":180},"CAPEC-503","WebView Exposure",[],{"id":182,"name":183,"techniques":184},"CAPEC-536","Data Injected During Configuration",[],{"id":186,"name":187,"techniques":188},"CAPEC-546","Incomplete Data Deletion in a Multi-Tenant Environment",[],{"id":190,"name":191,"techniques":192},"CAPEC-550","Install New Service",[193],{"id":194,"name":195,"tactics":196,"countermeasures":199},"T1543","Create or Modify System Process",[197,198],{"id":42,"name":43},{"id":39,"name":40},[200,202,204,206,210,212,214,216,218,220,222,224,226,228,230],{"id":149,"name":150,"tactic":201},{"name":130},{"id":46,"name":47,"tactic":203},{"name":49},{"id":51,"name":52,"tactic":205},{"name":49},{"id":207,"name":208,"tactic":209},"D3-SFA","System File Analysis",{"name":49},{"id":59,"name":60,"tactic":211},{"name":62},{"id":64,"name":65,"tactic":213},{"name":67},{"id":69,"name":70,"tactic":215},{"name":72},{"id":153,"name":154,"tactic":217},{"name":72},{"id":74,"name":75,"tactic":219},{"name":77},{"id":157,"name":158,"tactic":221},{"name":77},{"id":79,"name":80,"tactic":223},{"name":82},{"id":84,"name":85,"tactic":225},{"name":82},{"id":88,"name":89,"tactic":227},{"name":82},{"id":92,"name":93,"tactic":229},{"name":82},{"id":96,"name":97,"tactic":231},{"name":82},{"id":233,"name":234,"techniques":235},"CAPEC-551","Modify Existing Service",[236],{"id":194,"name":195,"tactics":237,"countermeasures":240},[238,239],{"id":42,"name":43},{"id":39,"name":40},[241,243,245,247,249,251,253,255,257,259,261,263,265,267,269],{"id":149,"name":150,"tactic":242},{"name":130},{"id":46,"name":47,"tactic":244},{"name":49},{"id":51,"name":52,"tactic":246},{"name":49},{"id":207,"name":208,"tactic":248},{"name":49},{"id":59,"name":60,"tactic":250},{"name":62},{"id":64,"name":65,"tactic":252},{"name":67},{"id":69,"name":70,"tactic":254},{"name":72},{"id":153,"name":154,"tactic":256},{"name":72},{"id":74,"name":75,"tactic":258},{"name":77},{"id":157,"name":158,"tactic":260},{"name":77},{"id":79,"name":80,"tactic":262},{"name":82},{"id":84,"name":85,"tactic":264},{"name":82},{"id":88,"name":89,"tactic":266},{"name":82},{"id":92,"name":93,"tactic":268},{"name":82},{"id":96,"name":97,"tactic":270},{"name":82},{"id":272,"name":273,"techniques":274},"CAPEC-552","Install Rootkit ",[275,332,352],{"id":276,"name":277,"tactics":278,"countermeasures":281},"T1014","Rootkit",[279,280],{"id":28,"name":29},{"id":31,"name":32},[282,286,290,292,294,298,302,306,308,310,312,316,318,322,324,326,328,330],{"id":283,"name":284,"tactic":285},"D3-SWI","Software Inventory",{"name":130},{"id":287,"name":288,"tactic":289},"D3-AVE","Asset Vulnerability Enumeration",{"name":130},{"id":46,"name":47,"tactic":291},{"name":49},{"id":51,"name":52,"tactic":293},{"name":49},{"id":295,"name":296,"tactic":297},"D3-FEMC","Firmware Embedded Monitoring Code",{"name":49},{"id":299,"name":300,"tactic":301},"D3-FV","Firmware Verification",{"name":49},{"id":303,"name":304,"tactic":305},"D3-FBA","Firmware Behavior Analysis",{"name":49},{"id":59,"name":60,"tactic":307},{"name":62},{"id":64,"name":65,"tactic":309},{"name":67},{"id":69,"name":70,"tactic":311},{"name":72},{"id":313,"name":314,"tactic":315},"D3-SU","Software Update",{"name":72},{"id":74,"name":75,"tactic":317},{"name":77},{"id":319,"name":320,"tactic":321},"D3-RS","Restore Software",{"name":77},{"id":79,"name":80,"tactic":323},{"name":82},{"id":84,"name":85,"tactic":325},{"name":82},{"id":88,"name":89,"tactic":327},{"name":82},{"id":92,"name":93,"tactic":329},{"name":82},{"id":96,"name":97,"tactic":331},{"name":82},{"id":333,"name":334,"tactics":335,"countermeasures":339},"T1542.003","Bootkit",[336,337,338],{"id":28,"name":29},{"id":31,"name":32},{"id":42,"name":43},[340,342,344,346,350],{"id":283,"name":284,"tactic":341},{"name":130},{"id":287,"name":288,"tactic":343},{"name":130},{"id":313,"name":314,"tactic":345},{"name":72},{"id":347,"name":348,"tactic":349},"D3-BA","Bootloader Authentication",{"name":72},{"id":319,"name":320,"tactic":351},{"name":77},{"id":353,"name":354,"tactics":355,"countermeasures":358},"T1547.006","Kernel Modules and Extensions",[356,357],{"id":42,"name":43},{"id":39,"name":40},[359,361,363,365,367,369,371,373,375,377,379],{"id":46,"name":47,"tactic":360},{"name":49},{"id":51,"name":52,"tactic":362},{"name":49},{"id":59,"name":60,"tactic":364},{"name":62},{"id":64,"name":65,"tactic":366},{"name":67},{"id":69,"name":70,"tactic":368},{"name":72},{"id":74,"name":75,"tactic":370},{"name":77},{"id":79,"name":80,"tactic":372},{"name":82},{"id":84,"name":85,"tactic":374},{"name":82},{"id":88,"name":89,"tactic":376},{"name":82},{"id":92,"name":93,"tactic":378},{"name":82},{"id":96,"name":97,"tactic":380},{"name":82},{"id":382,"name":383,"techniques":384},"CAPEC-556","Replace File Extension Handlers",[385],{"id":386,"name":387,"tactics":388,"countermeasures":391},"T1546.001","Change Default File Association",[389,390],{"id":39,"name":40},{"id":42,"name":43},[392,394,396],{"id":127,"name":128,"tactic":393},{"name":130},{"id":136,"name":137,"tactic":395},{"name":77},{"id":92,"name":93,"tactic":397},{"name":82},{"id":399,"name":400,"techniques":401},"CAPEC-558","Replace Trusted Executable",[402,408],{"id":403,"name":404,"tactics":405,"countermeasures":407},"T1505.005","Terminal Services DLL",[406],{"id":42,"name":43},[],{"id":409,"name":410,"tactics":411,"countermeasures":414},"T1546.008","Accessibility Features",[412,413],{"id":39,"name":40},{"id":42,"name":43},[415,417,419,421,425,429,433,437,441,445,449,453,457,461,465,469,471,473,475,477,479,481,483,485,487,489,493,497],{"id":127,"name":128,"tactic":416},{"name":130},{"id":46,"name":47,"tactic":418},{"name":49},{"id":51,"name":52,"tactic":420},{"name":49},{"id":422,"name":423,"tactic":424},"D3-DA","Dynamic Analysis",{"name":49},{"id":426,"name":427,"tactic":428},"D3-EFA","Emulated File Analysis",{"name":49},{"id":430,"name":431,"tactic":432},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":49},{"id":434,"name":435,"tactic":436},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":49},{"id":438,"name":439,"tactic":440},"D3-CSPP","Client-server Payload Profiling",{"name":49},{"id":442,"name":443,"tactic":444},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":49},{"id":446,"name":447,"tactic":448},"D3-NTSA","Network Traffic Signature Analysis",{"name":49},{"id":450,"name":451,"tactic":452},"D3-APCA","Application Protocol Command Analysis",{"name":49},{"id":454,"name":455,"tactic":456},"D3-NTCD","Network Traffic Community Deviation",{"name":49},{"id":458,"name":459,"tactic":460},"D3-RTSD","Remote Terminal Session Detection",{"name":49},{"id":462,"name":463,"tactic":464},"D3-CAA","Connection Attempt Analysis",{"name":49},{"id":466,"name":467,"tactic":468},"D3-ANAA","Administrative Network Activity Analysis",{"name":49},{"id":59,"name":60,"tactic":470},{"name":62},{"id":64,"name":65,"tactic":472},{"name":67},{"id":69,"name":70,"tactic":474},{"name":72},{"id":74,"name":75,"tactic":476},{"name":77},{"id":136,"name":137,"tactic":478},{"name":77},{"id":79,"name":80,"tactic":480},{"name":82},{"id":84,"name":85,"tactic":482},{"name":82},{"id":88,"name":89,"tactic":484},{"name":82},{"id":92,"name":93,"tactic":486},{"name":82},{"id":96,"name":97,"tactic":488},{"name":82},{"id":490,"name":491,"tactic":492},"D3-EAL","Executable Allowlisting",{"name":82},{"id":494,"name":495,"tactic":496},"D3-EDL","Executable Denylisting",{"name":82},{"id":498,"name":499,"tactic":500},"D3-NTF","Network Traffic Filtering",{"name":82},{"id":502,"name":503,"techniques":504},"CAPEC-562","Modify Shared File",[505],{"id":506,"name":507,"tactics":508,"countermeasures":512},"T1080","Taint Shared Content",[509],{"id":510,"name":511},"TA0109","Lateral Movement",[513,517],{"id":514,"name":515,"tactic":516},"D3-DNR","Decoy Network Resource",{"name":67},{"id":518,"name":519,"tactic":520},"D3-NRAM","Network Resource Access Mediation",{"name":82},{"id":522,"name":523,"techniques":524},"CAPEC-563","Add Malicious File to Shared Webroot",[],{"id":526,"name":527,"techniques":528},"CAPEC-564","Run Software at Logon",[529,576,605,634],{"id":530,"name":531,"tactics":532,"countermeasures":535},"T1037","Boot or Logon Initialization Scripts",[533,534],{"id":42,"name":43},{"id":39,"name":40},[536,538,540,542,544,546,548,550,552,554,556,558,560,562,564,566,568,570,572,574],{"id":127,"name":128,"tactic":537},{"name":130},{"id":46,"name":47,"tactic":539},{"name":49},{"id":51,"name":52,"tactic":541},{"name":49},{"id":422,"name":423,"tactic":543},{"name":49},{"id":426,"name":427,"tactic":545},{"name":49},{"id":132,"name":133,"tactic":547},{"name":49},{"id":59,"name":60,"tactic":549},{"name":62},{"id":64,"name":65,"tactic":551},{"name":67},{"id":514,"name":515,"tactic":553},{"name":67},{"id":69,"name":70,"tactic":555},{"name":72},{"id":74,"name":75,"tactic":557},{"name":77},{"id":136,"name":137,"tactic":559},{"name":77},{"id":79,"name":80,"tactic":561},{"name":82},{"id":84,"name":85,"tactic":563},{"name":82},{"id":88,"name":89,"tactic":565},{"name":82},{"id":92,"name":93,"tactic":567},{"name":82},{"id":96,"name":97,"tactic":569},{"name":82},{"id":490,"name":491,"tactic":571},{"name":82},{"id":494,"name":495,"tactic":573},{"name":82},{"id":518,"name":519,"tactic":575},{"name":82},{"id":577,"name":578,"tactics":579,"countermeasures":582},"T1543.001","Launch Agent",[580,581],{"id":42,"name":43},{"id":39,"name":40},[583,585,587,589,591,593,595,597,599,601,603],{"id":46,"name":47,"tactic":584},{"name":49},{"id":51,"name":52,"tactic":586},{"name":49},{"id":59,"name":60,"tactic":588},{"name":62},{"id":64,"name":65,"tactic":590},{"name":67},{"id":69,"name":70,"tactic":592},{"name":72},{"id":74,"name":75,"tactic":594},{"name":77},{"id":79,"name":80,"tactic":596},{"name":82},{"id":84,"name":85,"tactic":598},{"name":82},{"id":88,"name":89,"tactic":600},{"name":82},{"id":92,"name":93,"tactic":602},{"name":82},{"id":96,"name":97,"tactic":604},{"name":82},{"id":606,"name":607,"tactics":608,"countermeasures":611},"T1543.004","Launch Daemon",[609,610],{"id":42,"name":43},{"id":39,"name":40},[612,614,616,618,620,622,624,626,628,630,632],{"id":46,"name":47,"tactic":613},{"name":49},{"id":51,"name":52,"tactic":615},{"name":49},{"id":59,"name":60,"tactic":617},{"name":62},{"id":64,"name":65,"tactic":619},{"name":67},{"id":69,"name":70,"tactic":621},{"name":72},{"id":74,"name":75,"tactic":623},{"name":77},{"id":79,"name":80,"tactic":625},{"name":82},{"id":84,"name":85,"tactic":627},{"name":82},{"id":88,"name":89,"tactic":629},{"name":82},{"id":92,"name":93,"tactic":631},{"name":82},{"id":96,"name":97,"tactic":633},{"name":82},{"id":635,"name":636,"tactics":637,"countermeasures":640},"T1547","Boot or Logon Autostart Execution",[638,639],{"id":42,"name":43},{"id":39,"name":40},[641,643,645,647,649,651,653,655,657,659,661,663,665,667,669,671,673,675,677,679,681,683],{"id":127,"name":128,"tactic":642},{"name":130},{"id":283,"name":284,"tactic":644},{"name":130},{"id":287,"name":288,"tactic":646},{"name":130},{"id":46,"name":47,"tactic":648},{"name":49},{"id":51,"name":52,"tactic":650},{"name":49},{"id":132,"name":133,"tactic":652},{"name":49},{"id":422,"name":423,"tactic":654},{"name":49},{"id":426,"name":427,"tactic":656},{"name":49},{"id":59,"name":60,"tactic":658},{"name":62},{"id":64,"name":65,"tactic":660},{"name":67},{"id":69,"name":70,"tactic":662},{"name":72},{"id":313,"name":314,"tactic":664},{"name":72},{"id":74,"name":75,"tactic":666},{"name":77},{"id":136,"name":137,"tactic":668},{"name":77},{"id":319,"name":320,"tactic":670},{"name":77},{"id":79,"name":80,"tactic":672},{"name":82},{"id":84,"name":85,"tactic":674},{"name":82},{"id":88,"name":89,"tactic":676},{"name":82},{"id":92,"name":93,"tactic":678},{"name":82},{"id":96,"name":97,"tactic":680},{"name":82},{"id":490,"name":491,"tactic":682},{"name":82},{"id":494,"name":495,"tactic":684},{"name":82},{"id":686,"name":687,"techniques":688},"CAPEC-578","Disable Security Software",[689,748,781,800,811,822,833],{"id":690,"name":691,"tactics":692,"countermeasures":699},"T1556.006","Multi-Factor Authentication",[693,694,695,696],{"id":28,"name":29},{"id":170,"name":171},{"id":42,"name":43},{"id":697,"name":698},"TA0031","Credential Access",[700,704,708,712,716,720,724,728,732,736,740,744],{"id":701,"name":702,"tactic":703},"D3-PLA","Process Lineage Analysis",{"name":49},{"id":705,"name":706,"tactic":707},"D3-PSMD","Process Self-Modification Detection",{"name":49},{"id":709,"name":710,"tactic":711},"D3-PSA","Process Spawn Analysis",{"name":49},{"id":713,"name":714,"tactic":715},"D3-PT","Process Termination",{"name":62},{"id":717,"name":718,"tactic":719},"D3-PS","Process Suspension",{"name":62},{"id":721,"name":722,"tactic":723},"D3-HR","Host Reboot",{"name":62},{"id":725,"name":726,"tactic":727},"D3-HS","Host Shutdown",{"name":62},{"id":729,"name":730,"tactic":731},"D3-KBPI","Kernel-based Process Isolation",{"name":82},{"id":733,"name":734,"tactic":735},"D3-SCF","System Call Filtering",{"name":82},{"id":737,"name":738,"tactic":739},"D3-HBPI","Hardware-based Process Isolation",{"name":82},{"id":741,"name":742,"tactic":743},"D3-ABPI","Application-based Process Isolation",{"name":82},{"id":745,"name":746,"tactic":747},"D3-WSAM","Web Session Access Mediation",{"name":82},{"id":749,"name":750,"tactics":751,"countermeasures":754},"T1562.001","Disable or Modify Tools",[752,753],{"id":28,"name":29},{"id":31,"name":32},[755,757,759,761,765,767,769,771,773,775,777,779],{"id":701,"name":702,"tactic":756},{"name":49},{"id":705,"name":706,"tactic":758},{"name":49},{"id":709,"name":710,"tactic":760},{"name":49},{"id":762,"name":763,"tactic":764},"D3-SDM","System Daemon Monitoring",{"name":49},{"id":713,"name":714,"tactic":766},{"name":62},{"id":717,"name":718,"tactic":768},{"name":62},{"id":721,"name":722,"tactic":770},{"name":62},{"id":725,"name":726,"tactic":772},{"name":62},{"id":729,"name":730,"tactic":774},{"name":82},{"id":733,"name":734,"tactic":776},{"name":82},{"id":737,"name":738,"tactic":778},{"name":82},{"id":741,"name":742,"tactic":780},{"name":82},{"id":782,"name":783,"tactics":784,"countermeasures":787},"T1562.002","Disable Windows Event Logging",[785,786],{"id":28,"name":29},{"id":31,"name":32},[788,790,794,798],{"id":127,"name":128,"tactic":789},{"name":130},{"id":791,"name":792,"tactic":793},"D3-DRA","Disable Remote Access",{"name":72},{"id":795,"name":796,"tactic":797},"D3-ACH","Application Configuration Hardening",{"name":72},{"id":136,"name":137,"tactic":799},{"name":77},{"id":801,"name":802,"tactics":803,"countermeasures":806},"T1562.004","Disable or Modify System Firewall",[804,805],{"id":28,"name":29},{"id":31,"name":32},[807,809],{"id":127,"name":128,"tactic":808},{"name":130},{"id":136,"name":137,"tactic":810},{"name":77},{"id":812,"name":813,"tactics":814,"countermeasures":817},"T1562.007","Disable or Modify Cloud Firewall",[815,816],{"id":28,"name":29},{"id":31,"name":32},[818,820],{"id":127,"name":128,"tactic":819},{"name":130},{"id":136,"name":137,"tactic":821},{"name":77},{"id":823,"name":824,"tactics":825,"countermeasures":828},"T1562.008","Disable or Modify Cloud Logs",[826,827],{"id":28,"name":29},{"id":31,"name":32},[829,831],{"id":127,"name":128,"tactic":830},{"name":130},{"id":136,"name":137,"tactic":832},{"name":77},{"id":834,"name":835,"tactics":836,"countermeasures":839},"T1562.009","Safe Mode Boot",[837,838],{"id":28,"name":29},{"id":31,"name":32},[840,842,844,846],{"id":127,"name":128,"tactic":841},{"name":130},{"id":132,"name":133,"tactic":843},{"name":49},{"id":136,"name":137,"tactic":845},{"name":77},{"id":92,"name":93,"tactic":847},{"name":82},[849],{"_key":850,"name":851,"source":852,"url":853,"maturity":854,"reliability_score":855,"verified":856,"type":9,"platforms":857,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_WAZUH_WAZUH","Wazuh","github","https://github.com/wazuh/wazuh/issues/9201","poc",0.3,false,[],[859,860],"GO-2025-3444","GHSA-pmr2-2r83-h3cv",[],[863,865],{"_key":864},"SUSE-SU-2025:0429-1",{"_key":866},"OPENSUSE-SU-2025:14732-1",[],[869,870],{"_key":864},{"_key":866},"2025-02-03T21:35:46.430Z","2025-02-04T15:25:14.860Z","Analyzed",{"cisa_kev":856,"cisa_ransomware":856,"cisa_vendor":9,"epss_severity":875,"epss_score":876,"severity":877,"severity_score":878,"severity_version":879,"severity_source":880,"severity_vector":881,"severity_status":873},"low",0.00049,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[883,893],{"url":884,"sources":885,"tags":888},"https://github.com/wazuh/wazuh/security/advisories/GHSA-pmr2-2r83-h3cv",[880,886,887],"nvd","osv_go",[889,890,891,892],"X Refsource CONFIRM","Exploit","Vendor Advisory","WEB",{"url":894,"sources":895,"tags":896},"https://nvd.nist.gov/vuln/detail/CVE-2024-35177",[887],[897],"Advisory",[],{"date":900,"score":876,"percentile":901},"2026-06-04",0.15688,[903,907,910,913,916,918,921,924,927,930,933,936,939,942,944,948,951,954,958,961,964,967,970,973,976,979,982,986,989,992,995,998,1001,1004,1007,1010,1013,1016,1019,1022,1025,1028,1031,1034,1037,1040,1043,1046,1049,1052,1055,1058,1061,1063,1066,1069,1072,1075,1078,1081,1084,1087,1090,1093,1096,1099,1102,1105,1108,1111,1113,1116,1119,1122,1125,1127,1130,1133,1136,1138,1140,1143,1146,1148,1151,1153,1156,1159,1162,1165],{"date":904,"score":905,"percentile":906},"2025-11-04",0.00032,0.08415,{"date":908,"score":905,"percentile":909},"2025-11-05",0.08427,{"date":911,"score":905,"percentile":912},"2025-11-06",0.08544,{"date":914,"score":905,"percentile":915},"2025-11-07",0.0856,{"date":917,"score":905,"percentile":915},"2025-11-08",{"date":919,"score":905,"percentile":920},"2025-11-09",0.08526,{"date":922,"score":905,"percentile":923},"2025-11-10",0.08486,{"date":925,"score":905,"percentile":926},"2025-11-11",0.08513,{"date":928,"score":905,"percentile":929},"2025-11-12",0.0855,{"date":931,"score":905,"percentile":932},"2025-11-13",0.08595,{"date":934,"score":905,"percentile":935},"2025-11-14",0.08646,{"date":937,"score":905,"percentile":938},"2025-11-15",0.0867,{"date":940,"score":905,"percentile":941},"2025-11-16",0.08677,{"date":943,"score":905,"percentile":941},"2025-11-17",{"date":945,"score":946,"percentile":947},"2025-11-18",0.00036,0.06213,{"date":949,"score":946,"percentile":950},"2025-11-19",0.06227,{"date":952,"score":946,"percentile":953},"2025-11-20",0.06282,{"date":955,"score":956,"percentile":957},"2025-11-21",0.00033,0.08788,{"date":959,"score":956,"percentile":960},"2025-11-22",0.08716,{"date":962,"score":956,"percentile":963},"2025-11-23",0.0869,{"date":965,"score":956,"percentile":966},"2025-11-24",0.08683,{"date":968,"score":956,"percentile":969},"2025-11-25",0.08675,{"date":971,"score":956,"percentile":972},"2025-11-26",0.08679,{"date":974,"score":956,"percentile":975},"2025-11-27",0.08684,{"date":977,"score":956,"percentile":978},"2025-11-28",0.08664,{"date":980,"score":956,"percentile":981},"2025-11-29",0.08703,{"date":983,"score":984,"percentile":985},"2025-11-30",0.00034,0.09396,{"date":987,"score":984,"percentile":988},"2025-12-01",0.09443,{"date":990,"score":984,"percentile":991},"2025-12-02",0.09455,{"date":993,"score":984,"percentile":994},"2025-12-03",0.09479,{"date":996,"score":984,"percentile":997},"2025-12-04",0.09471,{"date":999,"score":984,"percentile":1000},"2025-12-05",0.09526,{"date":1002,"score":984,"percentile":1003},"2025-12-06",0.09539,{"date":1005,"score":984,"percentile":1006},"2025-12-07",0.09543,{"date":1008,"score":984,"percentile":1009},"2025-12-08",0.09553,{"date":1011,"score":984,"percentile":1012},"2025-12-09",0.09601,{"date":1014,"score":984,"percentile":1015},"2025-12-10",0.09681,{"date":1017,"score":984,"percentile":1018},"2025-12-11",0.09716,{"date":1020,"score":984,"percentile":1021},"2025-12-12",0.09739,{"date":1023,"score":984,"percentile":1024},"2025-12-13",0.09721,{"date":1026,"score":984,"percentile":1027},"2025-12-14",0.09712,{"date":1029,"score":984,"percentile":1030},"2025-12-15",0.0964,{"date":1032,"score":984,"percentile":1033},"2025-12-16",0.09628,{"date":1035,"score":984,"percentile":1036},"2025-12-17",0.09711,{"date":1038,"score":984,"percentile":1039},"2025-12-18",0.09768,{"date":1041,"score":984,"percentile":1042},"2025-12-19",0.09789,{"date":1044,"score":984,"percentile":1045},"2025-12-20",0.09782,{"date":1047,"score":984,"percentile":1048},"2025-12-21",0.09765,{"date":1050,"score":984,"percentile":1051},"2025-12-22",0.09738,{"date":1053,"score":984,"percentile":1054},"2025-12-23",0.09689,{"date":1056,"score":984,"percentile":1057},"2025-12-24",0.09692,{"date":1059,"score":984,"percentile":1060},"2025-12-25",0.09776,{"date":1062,"score":984,"percentile":1039},"2025-12-26",{"date":1064,"score":984,"percentile":1065},"2025-12-27",0.09743,{"date":1067,"score":984,"percentile":1068},"2025-12-28",0.09771,{"date":1070,"score":984,"percentile":1071},"2025-12-29",0.09736,{"date":1073,"score":984,"percentile":1074},"2025-12-30",0.09719,{"date":1076,"score":984,"percentile":1077},"2025-12-31",0.09772,{"date":1079,"score":984,"percentile":1080},"2026-01-01",0.09811,{"date":1082,"score":984,"percentile":1083},"2026-01-02",0.0981,{"date":1085,"score":984,"percentile":1086},"2026-01-03",0.09781,{"date":1088,"score":984,"percentile":1089},"2026-01-04",0.09704,{"date":1091,"score":984,"percentile":1092},"2026-01-05",0.09662,{"date":1094,"score":984,"percentile":1095},"2026-01-06",0.09654,{"date":1097,"score":984,"percentile":1098},"2026-01-07",0.09687,{"date":1100,"score":984,"percentile":1101},"2026-01-08",0.0974,{"date":1103,"score":984,"percentile":1104},"2026-01-09",0.0976,{"date":1106,"score":984,"percentile":1107},"2026-01-10",0.09774,{"date":1109,"score":984,"percentile":1110},"2026-01-11",0.09727,{"date":1112,"score":984,"percentile":1089},"2026-01-12",{"date":1114,"score":984,"percentile":1115},"2026-01-13",0.09666,{"date":1117,"score":984,"percentile":1118},"2026-01-14",0.0972,{"date":1120,"score":984,"percentile":1121},"2026-01-15",0.09734,{"date":1123,"score":984,"percentile":1124},"2026-01-16",0.09769,{"date":1126,"score":984,"percentile":1060},"2026-01-17",{"date":1128,"score":984,"percentile":1129},"2026-01-18",0.09758,{"date":1131,"score":984,"percentile":1132},"2026-01-19",0.09713,{"date":1134,"score":984,"percentile":1135},"2026-01-20",0.09688,{"date":1137,"score":984,"percentile":1095},"2026-01-21",{"date":1139,"score":984,"percentile":1030},"2026-01-22",{"date":1141,"score":984,"percentile":1142},"2026-01-23",0.0973,{"date":1144,"score":984,"percentile":1145},"2026-01-24",0.09784,{"date":1147,"score":984,"percentile":1132},"2026-01-25",{"date":1149,"score":984,"percentile":1150},"2026-01-26",0.09671,{"date":1152,"score":984,"percentile":1095},"2026-01-27",{"date":1154,"score":984,"percentile":1155},"2026-01-28",0.09637,{"date":1157,"score":984,"percentile":1158},"2026-01-29",0.0961,{"date":1160,"score":984,"percentile":1161},"2026-01-30",0.0962,{"date":1163,"score":984,"percentile":1164},"2026-01-31",0.09616,{"date":1166,"score":984,"percentile":1167},"2026-02-01",0.09624,[1169,1174],{"source":880,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":1170,"cvss_v4_0":9},{"baseScore":878,"baseSeverity":1171,"vectorString":881,"impactScore":1172,"exploitabilityScore":1173},"HIGH",9.8,4.6,{"source":886,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":1175,"cvss_v4_0":9},{"baseScore":878,"baseSeverity":1171,"vectorString":881,"impactScore":1172,"exploitabilityScore":1173},[1177,1192],{"ecosystem":1178,"name":1179,"vendor":1180,"product":1181,"cpe_part":9,"purl_type":1182,"purl_namespace":1180,"purl_name":1181,"source":9,"versions":1183},"Go","github.com/wazuh/wazuh","github.com/wazuh","wazuh","golang",[1184],{"version":1185,"is_range":1186,"range_type":1187,"version_start":1188,"version_start_type":1189,"version_end":1190,"version_end_type":1191,"fixed_in":9},"gte3_0_0+incompatible_lt4_9_0+incompatible",true,"semver","3.0.0+incompatible","including","4.9.0+incompatible","excluding",{"ecosystem":9,"name":1181,"vendor":1181,"product":1181,"cpe_part":1193,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1194},"a",[1195],{"version":1196,"is_range":1186,"range_type":1197,"version_start":1198,"version_start_type":1189,"version_end":1199,"version_end_type":1191,"fixed_in":9},"gte3.0.0_lt4.9.0","cpe","3.0.0","4.9.0"]