Metaseverity: MediumDraft

CAPEC-153Input Data Manipulation

Abstraction
Meta
Status
Draft
Severity
Medium

Description

An attacker exploits a weakness in input validation by controlling the format, structure, and composition of data to an input-processing interface. By supplying input of a non-standard or unexpected form an attacker can adversely impact the security of the target. Metadata: meta CAPEC pattern, status draft, severity medium. Underlying weakness: CWE-20.

Related weaknesses· 1

CWE-20

Exploits1

TypeTargetConfidenceTier
WeaknessImproper Input Validationcwe-20100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Resource Injection
CAPEC
Argument Injection
CAPEC
Command Injection
CAPEC
Software Integrity Attack
CAPEC
Data Injected During Configuration
CAPEC
Manipulating Web Input to File System Calls
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.