Detailedlikelihood: Mediumseverity: Very HighDraft
CAPEC-681Exploitation of Improperly Controlled Hardware Security Identifiers
Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
Very High
Description
Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity very high. Underlying weaknesses: CWE-1259, CWE-1267, CWE-1270, CWE-1294, CWE-1302. Related CAPEC patterns: [object Object], [object Object].
Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity very high. Underlying weaknesses: CWE-1259, CWE-1267, CWE-1270, CWE-1294, CWE-1302. Related CAPEC patterns: [object Object], [object Object].
Related weaknesses· 5
Related attack patterns· 2
Exploits5
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Generation of Incorrect Security Tokenscwe-1270 | 100% | live |
| Weakness | Policy Uses Obsolete Encodingcwe-1267 | 100% | live |
| Weakness | Improper Restriction of Security Token Assignmentcwe-1259 | 100% | live |
| Weakness | Insecure Security Identifier Mechanismcwe-1294 | 100% | live |
| Weakness | Missing Source Identifier in Entity Transactions on a System-On-Chip (SOC)cwe-1302 | 100% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.