MetaDraft

CAPEC-233Privilege Escalation

Abstraction
Meta
Status
Draft

Description

An adversary exploits a weakness enabling them to elevate their privilege and perform an action that they are not supposed to be authorized to perform. Metadata: meta CAPEC pattern, status draft. Underlying weaknesses: CWE-269, CWE-1264, CWE-1311. Mapped ATT&CK technique: [object Object]. Metadata: meta CAPEC pattern, status draft. Underlying weaknesses: CWE-269, CWE-1264, CWE-1311. Mapped ATT&CK technique: [object Object].

Related weaknesses· 3

CWE-269CWE-1264CWE-1311

MITRE ATT&CK crosswalk· 1

T1548: Abuse Elevation Control Mechanism

Exploits3

TypeTargetConfidenceTier
WeaknessImproper Privilege Managementcwe-269100%live
WeaknessHardware Logic with Insecure De-Synchronization between Control and Data Channelscwe-1264100%live
WeaknessImproper Translation of Security Attributes by Fabric Bridgecwe-1311100%live

Related to1

TypeTargetConfidenceTier
TechniqueAbuse Elevation Control Mechanismt1548100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Privilege Abuse
CAPEC
Target Programs with Elevated Privileges
CAPEC
Hijacking a privileged process
CAPEC
Authentication Bypass
CAPEC
Restful Privilege Elevation
CAPEC
Exploitation of Trusted Identifiers
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.