wazuh-qa icon indicating copy to clipboard operation
wazuh-qa copied to clipboard

Published 20 hours ago verified publisher icon wazuh

Test design: Execution on console in AR scripts and escape special characters from JSON alert

Open damarisg opened this issue 3 years ago • 0 comments

Description

This issue aims to design and create tests to cover the Active response tools allow arbitrary code execution bug.

It was a critical bug that opened us CVE-2021-44079 and, then Wazuh could fix it here.

Scenario: Execute by console a command and check that it not is executed as code. (check cases).

To Do

  • Research the issue.
  • Define TCs, also identify if they require IT or System tests.
  • Create TCs.

damarisg avatar Dec 20 '21 18:12 damarisg