Metalikelihood: Mediumseverity: MediumStable

CAPEC-154Resource Location Spoofing

Abstraction
Meta
Status
Stable
Likelihood
Medium
Severity
Medium

Description

An adversary deceives an application or user and convinces them to request a resource from an unintended location. By spoofing the location, the adversary can cause an alternate resource to be used, often one that the adversary controls and can be used to help them achieve their malicious goals. Metadata: meta CAPEC pattern, status stable, likelihood medium, severity medium. Underlying weakness: CWE-451.

Related weaknesses· 1

CWE-451

Exploits1

TypeTargetConfidenceTier
WeaknessUser Interface (UI) Misrepresentation of Critical Informationcwe-451100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Resource Injection
CAPEC
Establish Rogue Location
CAPEC
Identity Spoofing
CAPEC
Server Side Request Forgery
CAPEC
Content Spoofing
CAPEC
Clickjacking
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.