Détail de la catégorie CAPEC-515

CAPEC-515

Hardware
Draft
2014-06-23
00h00 +00:00
2022-09-29
00h00 +00:00
CAPEC Mitre.org
Alerte pour un CAPEC
Restez informé de toutes modifications pour un CAPEC spécifique.
Gestion des notifications

Nom: Hardware

Attack patterns within this category focus on the exploitation of the physical hardware used in computing systems. The techniques defined by each pattern reflect the replacement, destruction, modification and exploitation of hardware components that make up a system in an attempt to achieve a desired negative technical impact. Attacks against hardware component fall into several broad categories depending upon the relative sophistication of the attacker and the type of systems that are targeted. Attacks against hardware components differ from software attacks in that hardware-based attacks target the chips, circuit boards, device ports, or other components that comprise a computer system or embedded system. Sophisticated attacks may involve adding or removing jumpers to an exposed system, or applying sensors to portions of the motherboard to read data as it traverses the system bus.

Liste des Membres CAPEC

CAPEC-26: Leveraging Race Conditions Base

CAPEC-74: Manipulating State Base

CAPEC-113: Interface Manipulation Base

CAPEC-114: Authentication Abuse Base

CAPEC-116: Excavation Base

CAPEC-122: Privilege Abuse Base

CAPEC-124: Shared Resource Manipulation Base

CAPEC-148: Content Spoofing Base

CAPEC-151: Identity Spoofing Base

CAPEC-154: Resource Location Spoofing Base

CAPEC-161: Infrastructure Manipulation Base

CAPEC-176: Configuration/Environment Manipulation Base

CAPEC-188: Reverse Engineering Base

CAPEC-192: Protocol Analysis Base

CAPEC-212: Functionality Misuse Base

CAPEC-233: Privilege Escalation Base

CAPEC-438: Modification During Manufacture Base

CAPEC-439: Manipulation During Distribution Base

CAPEC-440: Hardware Integrity Attack Base

CAPEC-441: Malicious Logic Insertion Base

CAPEC-548: Contaminate Resource Base

CAPEC-560: Use of Known Domain Credentials Base

CAPEC-607: Obstruction Base

CAPEC-624: Hardware Fault Injection Base

Informations sur le CAPEC

Soumission

Nom Organisation Date Date de publication
CAPEC Content Team The MITRE Corporation 2014-06-23 +00:00

Modifications

Nom Organisation Date Commentaire
CAPEC Content Team The MITRE Corporation 2015-11-09 +00:00 Updated Description, Relationships
CAPEC Content Team The MITRE Corporation 2018-07-31 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-04-04 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2019-09-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2020-07-30 +00:00 Updated Relationships
CAPEC Content Team The MITRE Corporation 2022-09-29 +00:00 Updated Relationships
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.