Misbehaviour LossOfExtrinsic-C-TW

URI: LossOfExtrinsic-C-TW

Description: Discovery by potential attackers of a vulnerability whose exploitation would compromise data confidentiality.

This misbehaviour affects the trustworthiness attribute Extrinsic-C-TW

Host	A device that can store, process, transmit or receive data.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

H.E-C.TH.8

Vulnerability (C) discovered at Host: software vulnerability found in device Host, which could allow an attack on data confidentiality, and may be known to attackers. Less than 1 percent of vulnerabilities are specific to this type of action (NVD 2015-2019).

P.E-C.HP-iT.8

Vulnerability (C) discovered at Process: software vulnerability found in process Process, which could allow an attack on data confidentiality, and may be known to attackers. Less than 1 percent of vulnerabilities are specific to this type of action (NVD 2015-2019).

(empty)

DS.C.HDS-V.4

Attacker exploit at Host accesses stored data Data: the attacker is able to exploit a vulnerability in device Host gaining access to its stored copy of Data.

DS.C.HPsACr-pDS-V.4

Attacker exploit at Process accesses Data: the attacker is able to exploit a vulnerability in process Process and gains access to the stored copy of Data on device Host which is served by the process.

DS.C.HPsACrpDS-V.4

Attacker exploit at Process accesses its input Data: the attacker is able to exploit a vulnerability in process Process, gaining access to the stored copy of Data used by the process on its host device Host.

Misbehaviour LossOfExtrinsic-C-TW

Assets (2)

Threats that cause this misbehaviour (2)

H.E-C.TH.8

P.E-C.HP-iT.8

Threats caused by this misbehaviour (0)

Threats caused by affected trustworthiness attribute (3)

DS.C.HDS-V.4

DS.C.HPsACr-pDS-V.4

DS.C.HPsACrpDS-V.4