We are thrilled to announce the release of Wazuh 4.10.0, which brings integration with Microsoft Intune, a new vulnerability evaluation status field, and various enhancements to logging, security compliance policies, and the Wazuh dashboard.
Key Highlights
Integration with Microsoft Intune
Microsoft Intune, a device management solution for endpoints, virtual machines, and IoT devices, is now integrated into Wazuh 4.10.0. This integration allows users to collect and process security data from all managed devices, enhancing visibility and strengthening security monitoring. By leveraging the Microsoft Graph API framework, this feature operates synchronously to fetch logs, supporting efficient alert generation with new rules and decoders.
Vulnerability Evaluation Status
A new vulnerability.under_evaluation field has been added for improved tracking. This field filters vulnerabilities as “Evaluated” or “Under evaluation,” highlighting those lacking critical data, such as severity or classification.
This addition is particularly helpful for vulnerabilities labeled “AWAITING ANALYSIS” in the National Vulnerability Database (NVD), providing better tracking and prioritization of unresolved vulnerabilities.
Summary of Other Updates
The release also includes standardized logging for cloud security integrations, debug symbol generation for macOS, Linux, and Windows, and multiple enhancements to the Wazuh dashboard, including a revamped Agents management menu and improved vulnerability detection displays.
Conclusion
Wazuh 4.10.0 offers enhanced monitoring and usability features to improve IT infrastructure security. Detailed information can be found in the release notes or changelog. Support from the community drives continuous progress toward a more secure future.
