Improper input validation in Ossec Ossec-hids Agent

CVE-2024-1244

Improper input validation in the OSSEC HIDS agent for Windows prior to version 3.8.0 allows an attacker in with control over the OSSEC server or in possession of the agent's key to configure the agent to connect to a malicious UNC path. Th…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.003 (21.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References