github wazuh/wazuh v4.0.4
Wazuh v4.0.4
on GitHub

latest releases: v4.8.0-rc1, v4.7.4, v4.7.4-rc2...
3 years ago

Added

  • API:
    • Added missing secure headers for API responses. (#7138)
    • Added new config option to disable uploading configurations containing remote commands. (#7134)
    • Added new config option to choose the SSL ciphers. Default value TLSv1.2. (#7164)

Changed

  • API:
    • Deprecated endpoints to restore and update API configuration file. (#7132)
    • Default expiration time of the JWT token set to 15 minutes. (#7167)

Fixed

  • API:
    • Fixed a path traversal flaw (CVE-2021-26814) affecting 4.0.0 to 4.0.3 at /manager/files and /cluster/{node_id}/files endpoints. (#7131)
  • Framework:
    • Fixed a bug with add_manual(agents) function when authd is disabled. (#7135)
  • Core:
    • Fixed the purge of the Redhat vulnerabilities database before updating it. (#7133)
Check out latest releases or
releases around wazuh/wazuh v4.0.4

Don't miss a new wazuh release

NewReleases is sending notifications on new releases.

Get notifications