Standardlikelihood: Lowseverity: HighStable

CAPEC-121Exploit Non-Production Interfaces

Abstraction
Standard
Status
Stable
Likelihood
Low
Severity
High

Description

Metadata: standard CAPEC pattern, status stable, likelihood low, severity high. Underlying weaknesses: CWE-489, CWE-1209, CWE-1259, CWE-1267, CWE-1270 (and 5 more). Related CAPEC pattern: [object Object]. Metadata: standard CAPEC pattern, status stable, likelihood low, severity high. Underlying weaknesses: CWE-489, CWE-1209, CWE-1259, CWE-1267, CWE-1270 (and 5 more). Related CAPEC pattern: [object Object].

Related weaknesses· 10

CWE-489CWE-1209CWE-1259CWE-1267CWE-1270CWE-1294CWE-1295CWE-1296CWE-1302CWE-1313

Related attack patterns· 1

CAPEC-113 (ChildOf)

Exploits10

TypeTargetConfidenceTier
WeaknessPolicy Uses Obsolete Encodingcwe-1267100%live
WeaknessGeneration of Incorrect Security Tokenscwe-1270100%live
WeaknessMissing Source Identifier in Entity Transactions on a System-On-Chip (SOC)cwe-1302100%live
WeaknessActive Debug Codecwe-489100%live
WeaknessImproper Restriction of Security Token Assignmentcwe-1259100%live
WeaknessInsecure Security Identifier Mechanismcwe-1294100%live
WeaknessDebug Messages Revealing Unnecessary Informationcwe-1295100%live
WeaknessIncorrect Chaining or Granularity of Debug Componentscwe-1296100%live
WeaknessHardware Allows Activation of Test or Debug Logic at Runtimecwe-1313100%live
WeaknessFailure to Disable Reserved Bitscwe-1209100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Exploitation of Improperly Controlled Hardware Security Identifiers
CAPEC
Exploitation of Improperly Controlled Registers
CAPEC
Exploitation of Improperly Configured or Implemented Memory Protections
CAPEC
Using Unpublished Interfaces or Functionality
CAPEC
Exploiting Incorrect Chaining or Granularity of Hardware Debug Components
CAPEC
Exploitation of Trusted Identifiers
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.