Standardlikelihood: Highseverity: MediumDraft

CAPEC-180Exploiting Incorrectly Configured Access Control Security Levels

Abstraction
Standard
Status
Draft
Likelihood
High
Severity
Medium

Description

An attacker exploits a weakness in the configuration of access controls and is able to bypass the intended protection that these measures guard against and thereby obtain unauthorized access to the system or network. Sensitive functionality should always be protected with access controls. However configuring all but the most trivial access control systems can be very complicated and there are many opportunities for mistakes. If an attacker can learn of incorrectly configured access security settings, they may be able to exploit this in an attack.

Related weaknesses· 13

CWE-732CWE-1190CWE-1191CWE-1193CWE-1220CWE-1268CWE-1280CWE-1297CWE-1311CWE-1315CWE-1318CWE-1320CWE-1321

MITRE ATT&CK crosswalk· 1

T1574.010: Hijack Execution Flow: Services File Permissions Weaknesses

Related attack patterns· 2

CAPEC-122 (ChildOf)CAPEC-17 (CanPrecede)

Exploits13

TypeTargetConfidenceTier
WeaknessPower-On of Untrusted Execution Core Before Enabling Fabric Access Controlcwe-1193100%live
WeaknessMissing Support for Security Features in On-chip Fabrics or Busescwe-1318100%live
WeaknessPolicy Privileges are not Assigned Consistently Between Control and Data Agentscwe-1268100%live
WeaknessUnprotected Confidential Information on Device is Accessible by OSAT Vendorscwe-1297100%live
WeaknessInsufficient Granularity of Access Controlcwe-1220100%live
WeaknessImproper Protection for Outbound Error Messages and Alert Signalscwe-1320100%live
WeaknessIncorrect Permission Assignment for Critical Resourcecwe-732100%live
WeaknessOn-Chip Debug and Test Interface With Improper Access Controlcwe-1191100%live
WeaknessImproper Setting of Bus Controlling Capability in Fabric End-pointcwe-1315100%live
WeaknessImproperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')cwe-1321100%live
WeaknessDMA Device Enabled Too Early in Boot Phasecwe-1190100%live
WeaknessAccess Control Check Implemented After Asset is Accessedcwe-1280100%live
WeaknessImproper Translation of Security Attributes by Fabric Bridgecwe-1311100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueServices File Permissions Weaknesst1574.010100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Accessing Functionality Not Properly Constrained by ACLs
CAPEC
Authentication Abuse
CAPEC
Privilege Abuse
CAPEC
Authentication Bypass
CAPEC
Exploiting Incorrectly Configured SSL/TLS
CAPEC
Privilege Escalation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.