Vulnerabilities

CVE-2025-30201 - Wazuh NetNTLMv2 Hash Theft In Multiple Centralized Configuration Capabilities

2025-11-21 0 views admin

CVE ID : CVE-2025-30201 Published : Nov. 21, 2025, 7:15 p.m. | 30 minutes ago Description : Wazuh is a free and open source platform used for threat prevention, detection, and response. Prior to version 4.13.0, a vulnerability in Wazuh Agent allows authenticated attackers to force NTLM authentication through malicious UNC paths in various agent configuration settings, potentially leading NTLM relay attacks that would result privilege escalation and remote code execution. This issue has been patched in version 4.13.0. Severity: 7.7 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-30201

Severity

HIGH

Published

Nov. 21, 2025

Impact: privilege escalation

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-30201high

CVE-2025-30201 - Wazuh NetNTLMv2 Hash Theft In Multiple Centralized Configuration Capabilities

CVE Details

🏷️ Tags

More from Vulnerabilities

Ultimate Guide: CVE-2026-22186 - Bio-Formats <= 8.3.0 xxe in leica xlef metadata parser

- Panda3D <= 1.10.16 egg-mkfont format string information disclosure CVE-2026-22190

Breaking: CVE-2026-22189 - Panda3D <= 1.10.16 egg-mkfont stack buffer overflow

Complete Guide to CVE-2025-69222 - LibreChat is vulnerable to Server-Side Request Forgery due to missing restrictions

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting