Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-667Bluetooth Impersonation AttackS (BIAS)

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

An adversary disguises the MAC address of their Bluetooth enabled device to one for which there exists an active and trusted connection and authenticates successfully. The adversary can then perform malicious actions on the target Bluetooth device depending on the target’s capabilities. Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity high. Underlying weakness: CWE-290. Related CAPEC pattern: [object Object].

Related weaknesses· 1

CWE-290

Related attack patterns· 1

CAPEC-616 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessAuthentication Bypass by Spoofingcwe-290100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
BlueSmacking
CAPEC
Key Negotiation of Bluetooth Attack (KNOB)
CAPEC
Evil Twin Wi-Fi Attack
CAPEC
Exploitation of Improperly Controlled Hardware Security Identifiers
CAPEC
Metadata Spoofing
CAPEC
Cellular Rogue Base Station
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.