| Capability ID | Capability Description | Mapping Type | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|
| CVE-2025-24016 | Wazuh Server Deserialization of Untrusted Data Vulnerability | secondary_impact | T1203 | Exploitation for Client Execution |
Comments
Attackers with API access have been reported as exploiting this vulnerability through a JSON payload sent to a Wazuh worker server. Requests relayed to the master server can result in arbitrary code execution.
References
|
| CVE-2025-24016 | Wazuh Server Deserialization of Untrusted Data Vulnerability | exploitation_technique | T1078 | Valid Accounts |
Comments
Attackers with API access have been reported as exploiting this vulnerability through a JSON payload sent to a Wazuh worker server. Requests relayed to the master server can result in arbitrary code execution.
References
|
| CVE-2025-24016 | Wazuh Server Deserialization of Untrusted Data Vulnerability | primary_impact | T1059 | Command and Scripting Interpreter |
Comments
Attackers with API access have been reported as exploiting this vulnerability through a JSON payload sent to a Wazuh worker server. Requests relayed to the master server can result in arbitrary code execution.
References
|