Metalikelihood: Mediumseverity: MediumStable

CAPEC-212Functionality Misuse

Abstraction
Meta
Status
Stable
Likelihood
Medium
Severity
Medium

Description

An adversary leverages a legitimate capability of an application in such a way as to achieve a negative technical impact. The system functionality is not altered or modified but used in a way that was not intended. This is often accomplished through the overuse of a specific functionality or by leveraging functionality with design flaws that enables the adversary to gain access to unauthorized, sensitive data.

Related weaknesses· 3

CWE-1242CWE-1246CWE-1281

Exploits3

TypeTargetConfidenceTier
WeaknessInclusion of Undocumented Features or Chicken Bitscwe-1242100%live
WeaknessImproper Write Handling in Limited-write Non-Volatile Memoriescwe-1246100%live
WeaknessSequence of Processor Instructions Leads to Unexpected Behaviorcwe-1281100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Privilege Abuse
CAPEC
Functionality Bypass
CAPEC
Authentication Abuse
CAPEC
Accessing Functionality Not Properly Constrained by ACLs
CAPEC
Interface Manipulation
CAPEC
Protocol Manipulation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.