SubTechniquediscoveryATLAS

AML.T0084.003Call Chains

What it is

Adversaries may extract call chains from AI agent configurations, which can reveal potentially targets for remote code execution (RCE) or other vulnerabilities. Vulnerable call chains often connect user inputs or LLM outputs to an execution sink (e.g. exec, eval, os.popen). The vulnerabilities may be later exploited via [LLM Prompt Injection](/techniques/AML.T0051). Adversaries may systematically identify potentially vulnerable call chains present in LLM frameworks, then scan for applications that are configured to use these call chains for targeting [\[1\]][1]. [1]: https://arxiv.org/abs/2309.02926

References

  1. https://atlas.mitre.org/techniques/AML.T0084.003

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS
AI Agent Tool Invocation
ATLAS
AI Agent
ATLAS
AI Supply Chain Compromise
ATLAS
User Execution
ATLAS
LLM Prompt Crafting
ATLAS
LLM Prompt Injection
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.