Metaseverity: HighDraft

CAPEC-112Brute Force

Abstraction
Meta
Status
Draft
Severity
High

Description

In this attack, some asset (information, functionality, identity, etc.) is protected by a finite secret value. The attacker attempts to gain access to this asset by using trial-and-error to exhaustively explore all the possible secret values in the hope of finding the secret (or a value that is functionally equivalent) that will unlock the asset.

Related weaknesses· 3

CWE-330CWE-326CWE-521

MITRE ATT&CK crosswalk· 1

T1110: Brute Force

Exploits3

TypeTargetConfidenceTier
WeaknessUse of Insufficiently Random Valuescwe-330100%live
WeaknessWeak Password Requirementscwe-521100%live
WeaknessInadequate Encryption Strengthcwe-326100%live

Related to1

TypeTargetConfidenceTier
TechniqueBrute Forcet1110100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Password Brute Forcing
CAPEC
Encryption Brute Forcing
CAPEC
Authentication Abuse
CAPEC
Privilege Abuse
CAPEC
Cryptanalysis
CAPEC
Magnetic Strip Card Brute Force Attacks
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.