Detailedlikelihood: Mediumseverity: HighStable

CAPEC-445Malicious Logic Insertion into Product Software via Configuration Management Manipulation

Abstraction
Detailed
Status
Stable
Likelihood
Medium
Severity
High

Description

Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object]. Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

MITRE ATT&CK crosswalk· 1

T1195.001: Supply Chain Compromise: Compromise Software Dependencies and Development Tools

Related attack patterns· 1

CAPEC-444 (ChildOf)

Related to1

TypeTargetConfidenceTier
SubTechniqueCompromise Software Dependencies and Development Toolst1195.001100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Malicious Logic Insertion into Product via Inclusion of Third-Party Component
CAPEC
Malicious Logic Inserted Into Product by Authorized Developer
CAPEC
Malicious Code Implanted During Chip Programming
CAPEC
Alteration of a Software Update
CAPEC
System Build Data Maliciously Altered
CAPEC
Hardware Integrity Attack
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.