Detailedlikelihood: Mediumseverity: HighStable

CAPEC-695Repo Jacking

Abstraction
Detailed
Status
Stable
Likelihood
Medium
Severity
High

Description

Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Underlying weaknesses: CWE-494, CWE-829. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object]. Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Underlying weaknesses: CWE-494, CWE-829. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

Related weaknesses· 2

CWE-494CWE-829

MITRE ATT&CK crosswalk· 1

T1195.001: Supply Chain Compromise: Compromise Software Dependencies and Development Tools

Related attack patterns· 1

CAPEC-616 (ChildOf)

Exploits2

TypeTargetConfidenceTier
WeaknessDownload of Code Without Integrity Checkcwe-494100%live
WeaknessInclusion of Functionality from Untrusted Control Spherecwe-829100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueCompromise Software Dependencies and Development Toolst1195.001100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
StarJacking
CAPEC
Spoof Version Control System Commit Metadata
CAPEC
Spoof Open-Source Software Metadata
CAPEC
Malicious Code Implanted During Chip Programming
CAPEC
System Location Discovery
CAPEC
Malicious Software Download
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.