CAPEC-515 Category Detail

CAPEC-515

Hardware
Draft
2014-06-23
00h00 +00:00
2022-09-29
00h00 +00:00
CAPEC Mitre.org
Alerte pour un CAPEC
Stay informed of any changes for a specific CAPEC.
Notifications manage

Name: Hardware

Attack patterns within this category focus on the exploitation of the physical hardware used in computing systems. The techniques defined by each pattern reflect the replacement, destruction, modification and exploitation of hardware components that make up a system in an attempt to achieve a desired negative technical impact. Attacks against hardware component fall into several broad categories depending upon the relative sophistication of the attacker and the type of systems that are targeted. Attacks against hardware components differ from software attacks in that hardware-based attacks target the chips, circuit boards, device ports, or other components that comprise a computer system or embedded system. Sophisticated attacks may involve adding or removing jumpers to an exposed system, or applying sensors to portions of the motherboard to read data as it traverses the system bus.

CAPEC Members List

CAPEC-26: Leveraging Race Conditions Base

CAPEC-74: Manipulating State Base

CAPEC-113: Interface Manipulation Base

CAPEC-114: Authentication Abuse Base

CAPEC-116: Excavation Base

CAPEC-122: Privilege Abuse Base

CAPEC-124: Shared Resource Manipulation Base

CAPEC-148: Content Spoofing Base

CAPEC-151: Identity Spoofing Base

CAPEC-154: Resource Location Spoofing Base

CAPEC-161: Infrastructure Manipulation Base

CAPEC-176: Configuration/Environment Manipulation Base

CAPEC-188: Reverse Engineering Base

CAPEC-192: Protocol Analysis Base

CAPEC-212: Functionality Misuse Base

CAPEC-233: Privilege Escalation Base

CAPEC-438: Modification During Manufacture Base

CAPEC-439: Manipulation During Distribution Base

CAPEC-440: Hardware Integrity Attack Base

CAPEC-441: Malicious Logic Insertion Base

CAPEC-548: Contaminate Resource Base

CAPEC-560: Use of Known Domain Credentials Base

CAPEC-607: Obstruction Base

CAPEC-624: Hardware Fault Injection Base

CAPEC Informations

Submission

Name Organization Date Date release
CAPEC Content Team The MITRE Corporation 2014-06-23 +00:00

Modifications

Name Organization Date Comment
CAPEC Content Team The MITRE Corporation 2015-11-09 +00:00 Updated Description, Relationships
CAPEC Content Team The MITRE Corporation 2018-07-31 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-04-04 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-09-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2020-07-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2022-09-29 +00:00 Updated Relationships
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.