Misbehaviour LossOfExtrinsic-M-TW

URI: LossOfExtrinsic-M-TW

Description: Discovery by potential attackers of a vulnerability whose exploitation would allow an attacker to take control.

This misbehaviour affects the trustworthiness attribute Extrinsic-M-TW

Host	A device that can store, process, transmit or receive data.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

H.E-M.SH.8

Vulnerability (M) discovered at Host: software vulnerability found in device Host, which could allow an attack gaining admin level access, and may be known to attackers. Around 18 percent of vulnerabilities allow complete control of the vulnerable device (NVD 2015-2019).

P.E-M.SHP-iT.8

Vulnerability (M) discovered at Process: software vulnerability found in process Process, which could allow admin level access to its host device, and may be known to attackers. Around 18 percent of vulnerabilities allow complete control of the vulnerable device (NVD 2015-2019).

(empty)

H.J.GH.7

Malware inserts remote access back door in infected device Host: the malware infecting device Host exploits a vulnerability to insert a means for the attacker to remotely access admin privileges on Host.

H.M.HAC.4

Attacker exploit gains admin rights at Host when it is in location Space: the attacker exploits a vulnerability in device Host in context HostAccess and gains control over the device in that context.

H.M.HmACPAC.4

Attacker exploit at Process in location Space gains admin rights at Host: the attacker exploits a vulnerability in the process Process when its host Host is in Space, and is able to escalate privileges to gain admin rights on Host in that context.

Misbehaviour LossOfExtrinsic-M-TW

Assets (2)

Threats that cause this misbehaviour (2)

H.E-M.SH.8

P.E-M.SHP-iT.8

Threats caused by this misbehaviour (0)

Threats caused by affected trustworthiness attribute (3)

H.J.GH.7

H.M.HAC.4

H.M.HmACPAC.4