Metalikelihood: Highseverity: Very LowStable

CAPEC-224Fingerprinting

Abstraction
Meta
Status
Stable
Likelihood
High
Severity
Very Low

Description

An adversary compares output from a target system to known indicators that uniquely identify specific details about the target. Most commonly, fingerprinting is done to determine operating system and application versions. Fingerprinting can be done passively as well as actively. Fingerprinting by itself is not usually detrimental to the target. However, the information gathered through fingerprinting often enables an adversary to discover existing weaknesses in the target.

Related weaknesses· 1

CWE-200

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Passive OS Fingerprinting
CAPEC
Active OS Fingerprinting
CAPEC
Application Fingerprinting
CAPEC
Web Application Fingerprinting
CAPEC
Browser Fingerprinting
CAPEC
Process Footprinting
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.