Standardlikelihood: Highseverity: Very HighStable

CAPEC-662Adversary in the Browser (AiTB)

Abstraction
Standard
Status
Stable
Likelihood
High
Severity
Very High

Description

Metadata: standard CAPEC pattern, status stable, likelihood high, severity very high. Underlying weaknesses: CWE-300, CWE-494. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object]. Metadata: standard CAPEC pattern, status stable, likelihood high, severity very high. Underlying weaknesses: CWE-300, CWE-494. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

Related weaknesses· 2

CWE-300CWE-494

MITRE ATT&CK crosswalk· 1

T1185: Man in the Browser

Related attack patterns· 1

CAPEC-94 (ChildOf)

Exploits2

TypeTargetConfidenceTier
WeaknessDownload of Code Without Integrity Checkcwe-494100%live
WeaknessChannel Accessible by Non-Endpointcwe-300100%live

Related to1

TypeTargetConfidenceTier
TechniqueBrowser Session Hijackingt1185100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Adversary in the Middle (AiTM)
CAPEC
Browser in the Middle (BiTM)
CAPEC
Install Malicious Extension
CAPEC
Leveraging Active Adversary in the Middle Attacks to Bypass Same Origin Policy
CAPEC
Clickjacking
CAPEC
Server Side Request Forgery
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.