DetailedDraft

CAPEC-458Flash Memory Attacks

Abstraction
Detailed
Status
Draft

Description

An adversary inserts malicious logic into a product or technology via flashing the on-board memory with a code-base that contains malicious logic. Various attacks exist against the integrity of flash memory, the most direct being rootkits coded into the BIOS or chipset of a device. Metadata: detailed CAPEC pattern, status draft. Underlying weakness: CWE-1282. Related CAPEC pattern: [object Object].

Related weaknesses· 1

CWE-1282

Related attack patterns· 1

CAPEC-456 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessAssumed-Immutable Data is Stored in Writable Memorycwe-1282100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Infected Memory
CAPEC
Flash Injection
CAPEC
Exploitation of Firmware or ROM Code with Unpatchable Vulnerabilities
CAPEC
Altered Component Firmware
CAPEC
USB Memory Attacks
CAPEC
Infected Hardware
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.