CAPEC-515 Kategoriedetails

CAPEC-515

Hardware
Draft
2014-06-23
00h00 +00:00
2022-09-29
00h00 +00:00
CAPEC Mitre.org
Benachrichtigung für ein CAPEC
Bleiben Sie über alle Änderungen zu einem bestimmten CAPEC informiert.
Benachrichtigungen verwalten

Name: Hardware

Attack patterns within this category focus on the exploitation of the physical hardware used in computing systems. The techniques defined by each pattern reflect the replacement, destruction, modification and exploitation of hardware components that make up a system in an attempt to achieve a desired negative technical impact. Attacks against hardware component fall into several broad categories depending upon the relative sophistication of the attacker and the type of systems that are targeted. Attacks against hardware components differ from software attacks in that hardware-based attacks target the chips, circuit boards, device ports, or other components that comprise a computer system or embedded system. Sophisticated attacks may involve adding or removing jumpers to an exposed system, or applying sensors to portions of the motherboard to read data as it traverses the system bus.

CAPEC-Mitgliederliste

CAPEC-26: Leveraging Race Conditions Base

CAPEC-74: Manipulating State Base

CAPEC-113: Interface Manipulation Base

CAPEC-114: Authentication Abuse Base

CAPEC-116: Excavation Base

CAPEC-122: Privilege Abuse Base

CAPEC-124: Shared Resource Manipulation Base

CAPEC-148: Content Spoofing Base

CAPEC-151: Identity Spoofing Base

CAPEC-154: Resource Location Spoofing Base

CAPEC-161: Infrastructure Manipulation Base

CAPEC-176: Configuration/Environment Manipulation Base

CAPEC-188: Reverse Engineering Base

CAPEC-192: Protocol Analysis Base

CAPEC-212: Functionality Misuse Base

CAPEC-233: Privilege Escalation Base

CAPEC-438: Modification During Manufacture Base

CAPEC-439: Manipulation During Distribution Base

CAPEC-440: Hardware Integrity Attack Base

CAPEC-441: Malicious Logic Insertion Base

CAPEC-548: Contaminate Resource Base

CAPEC-560: Use of Known Domain Credentials Base

CAPEC-607: Obstruction Base

CAPEC-624: Hardware Fault Injection Base

CAPEC-Informationen

Einreichung

Name Organisation Datum Veröffentlichungsdatum
CAPEC Content Team The MITRE Corporation 2014-06-23 +00:00

Änderungen

Name Organisation Datum Kommentar
CAPEC Content Team The MITRE Corporation 2015-11-09 +00:00 Updated Description, Relationships
CAPEC Content Team The MITRE Corporation 2018-07-31 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-04-04 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-09-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2020-07-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2022-09-29 +00:00 Updated Relationships
Die auf CVE Find präsentierten Informationen stammen aus mehreren sorgfältig ausgewählten Referenzquellen. CVE-Daten werden von der MITRE Corporation und der National Vulnerability Database (NVD) bereitgestellt. Der Katalog bekannter ausgenutzter Schwachstellen (KEV) stammt von der Cybersecurity and Infrastructure Security Agency (CISA), während EPSS-Scores von FIRST.org kommen. Darüber hinaus werden Daten zu Software-Schwachstellen (CWE) und häufigen Angriffsmustern (CAPEC) von der MITRE Corporation gepflegt, und Informationen zu Hardware- und Software-Konfigurationen (CPE) werden von der NVD bereitgestellt.