Wazuh Agent

by Wazuh, Inc.v4.14.5

Last updated Jun 8, 2026

Wazuh helps you to gain deeper security visibility into your infrastructure by monitoring hosts at an operating system and application level.

Install with winget

$ winget install --id Wazuh.WazuhAgent --exact --version 4.14.5

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for Wazuh Agent

Wazuh Agent uses MSI (WiX). The silent install switches are /quiet /norestart.

One-line silent install (x86, machine scope)

msiexec.exe /i wazuh-agent-4.14.5-1.msi /quiet /norestart

See the full silent install reference for Wazuh Agent →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v4.14.5

Architecture	Type	Scope	Install	Download
x86	MSI WiX	machine		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

medium6.5Patched in wingetCVE-2026-41499affects before 4.14.4Apr 29, 2026
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, multiple heap-based out-of-bounds WRITE vulnerabilities exist in parse_uname_string() (remoted_op.c). This function processes OS identificat...
Vendor advisory
critical9.0Patched in wingetCVE-2026-30893affects before 4.14.4Apr 29, 2026
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.4.0 to before version 4.14.4, a path traversal vulnerability in Wazuh's cluster synchronization extraction routine allows an authenticated cluster peer to write arbitrary...
Vendor advisory
medium6.5Patched in wingetCVE-2026-28221affects before 4.14.4Apr 29, 2026
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.8.0 to before version 4.14.4, a stack-based buffer overflow exists in print_hex_string() in wazuh-remoted. The bug is triggered when formatting attacker-controlled bytes...
Vendor advisory
medium6.5Patched in wingetCVE-2026-26206affects before 4.14.4Apr 29, 2026
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, Wazuh's server API brute-force protection for POST /security/user/authenticate can be bypassed by sending concurrent authentication requests...
Vendor advisory
medium4.4Patched in wingetCVE-2026-26204affects before 4.14.4Apr 29, 2026
Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allo...
Vendor advisory
medium4.8Patched in wingetCVE-2025-15612affects before 4.14.0Mar 27, 2026
Wazuh provisioning scripts and Dockerfiles contain an insecure transport vulnerability where curl is invoked with the -k/--insecure flag, disabling SSL/TLS certificate validation. Attackers with network access can perform man-in-the-middle attacks to intercept and modify downloa...
Vendor advisory
medium6.5Patched in wingetCVE-2025-15617affects v4.12.0Mar 27, 2026
Wazuh version 4.12.0 contains an exposure vulnerability in GitHub Actions workflow artifacts that allows attackers to extract the GITHUB_TOKEN from uploaded artifacts. Attackers can use the exposed token within a limited time window to perform unauthorized actions such as pushin...
Vendor advisory
medium6.7Patched in wingetCVE-2025-15616affects before 4.8.0Mar 27, 2026
Wazuh wazuh-agent and wazuh-manager versions 2.1.0 before 4.8.0 contain multiple shell injection and untrusted search path vulnerabilities that allow attackers to execute arbitrary commands through various components including logcollector configuration, maild SMTP server tags,...
Vendor advisory

Showing 8 of 25. Source: NVD, updated 1h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Frequently asked questions

How do I install Wazuh Agent on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Wazuh.WazuhAgent --exact --version 4.14.5. winget downloads the installer from Wazuh, Inc. and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Wazuh Agent silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Wazuh.WazuhAgent --exact 4.14.5 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for Wazuh Agent?

Wazuh Agent uses MSI (WiX). Run the downloaded installer with: msiexec.exe /i wazuh-agent-4.14.5-1.msi /quiet /norestart. The silent switches are /quiet /norestart.

How do I uninstall Wazuh Agent via winget?

Run: winget uninstall --id Wazuh.WazuhAgent --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Wazuh Agent's Apps & Features entry.

Is Wazuh Agent free?

Wazuh Agent is distributed under GNU General Public License (version 2). Refer to the publisher for the full license terms - Wingetly itself does not charge for installation.

Does Wazuh Agent work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Wazuh Agent directly from the publisher.

How do I keep Wazuh Agent up to date?

Run winget upgrade --id Wazuh.WazuhAgent --exact, or winget upgrade --all to update everything winget tracks. We index 10 versions of Wazuh Agent from microsoft/winget-pkgs.

Recent versions

4.14.5latest
4.14.4
4.14.3
4.14.2
4.14.1
4.14.0
4.13.1
4.13.0
4.12.0
4.11.2