Wazuh v4.14.4 released

By SecBurg

17. Mar 2026

Wazuh screenshot

Wazuh is an open-source security solution offering integrated XDR and SIEM capabilities to protect endpoints and cloud-based workloads.

The latest version 4.14.4 is again mainly a maintenance and bugfix release:

Wazuh v4.14.4 Latest

Manager

Fixed

Fixed heap-based null WRITE Buffer Underflows. (34658)

Agent

Fixed

Fixed MS Graph default rules not triggering properly. (#34240)
Unified date formats in Active Response logs to ensure consistent timestamp formatting. (#34473)
Updated Docker integration rules to improve detection coverage and compatibility. (#34376)
Fixed heap-based NULL write buffer underflow in GetAlertData. (#34501)
Retained MSI installer log after Windows agent upgrade to improve troubleshooting visibility. (#34517)
Fixed incorrect Windows 11 edition detection after upgrading the agent to version 4.14.3. (#34530)
Fixed macOS agent crash during syscollector reload caused by invalid pthread_cond_destroy() usage. (#34274)
Fixed Windows OS edition detection. (34540)
Fix pthread_mutex_destroy invalid argument error on AIX in syscollector. (#34900)

Changed

Changed msi_output extension from txt to log. (34541)
Changed to unsigned char in print_hex_string. (34602)
Changed sync primitive disposal to stop and soften teardown failures. (34552)

RESTful API

Fixed

Fixed timestamps in the /agents/upgrade_result endpoint to return accurate UTC time. (#34176)
Improved cluster file synchronization path handling by adding safe path joins. (#34464)
Fixed API login race condition- (34459)

Other

Changed

Updated the azure-core dependency to 1.38.0 and the Werkzeug dependency to 3.1.5. (#34154)
Updated the protobuf dependency to 5.29.6 and the python-multipart dependency to 0.0.22. (#34403)

Read the installation guide if you want to try it out.

Tools
News