Standardseverity: MediumDraft

CAPEC-220Client-Server Protocol Manipulation

Abstraction
Standard
Status
Draft
Severity
Medium

Description

An adversary takes advantage of weaknesses in the protocol by which a client and server are communicating to perform unexpected actions. Communication protocols are necessary to transfer messages between client and server applications. Moreover, different protocols may be used for different types of interactions.

Related weaknesses· 1

CWE-757

Related attack patterns· 1

CAPEC-272 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessSelection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')cwe-757100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Protocol Manipulation
CAPEC
Web Services Protocol Manipulation
CAPEC
Inter-component Protocol Manipulation
CAPEC
Exploiting Trust in Client
CAPEC
SOAP Manipulation
CAPEC
Create Malicious Client
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.