Misbehaviour LossOfExtrinsic-VN-TW

URI: LossOfExtrinsic-VN-TW

Description: Discovery by potential attackers of a vulnerability that can be accessed from a remote network.

This misbehaviour affects the trustworthiness attribute Extrinsic-VN-TW

Host	A device that can store, process, transmit or receive data.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

H.E-VN.H.8

Vulnerability (VN) discovered at Host: software vulnerability found in device Host, which could allow an attack from a remote network, and may be known to attackers. Around 84 percent of vulnerabilities can be accessed from a remote network (NVD 2015-2019).

P.E-VN.HP-iT.8

Vulnerability (VN) discovered at Process: software vulnerability found in process Process, which could allow an attack from a remote network, and may be known to attackers. Around 84 percent of vulnerabilities can be accessed from a remote network (NVD 2015-2019).

(empty)

H.V.IoH.2

Remote authenticated exploit on device Host from AttackerSubnet via LogicalSubnet: an attacker with access to the subnet AttackerSubnet can send a malicious message via the network to device Host via LogicalSubnet that, after authentication, can exploit a vulnerability in Host.

H.V.IoH.3

Remote anonymous exploit on device Host from AttackerSubnet via LogicalSubnet: an attacker with access to the subnet AttackerSubnet can send a malicious message via the network to device Host via LogicalSubnet that, without authentication, can exploit a vulnerability in Host.

H.V.NoH.2

H.V.NoH.3

H.W.HIoH.3

Remote malware exploit on device Host from LogicalSubnet: an attacker with access to subnet LogicalSubnet sends a message containing malicious content designed to exploit a bug in Host and install itself there, without authentication.

H.W.HRoH.3

Remote malware exploit on device Host from RemoteHost: malware on device RemoteHost sends a message containing malicious content designed to exploit a bug in Host and install itself there, without authentication.

P.V.CCCS-iAC.2

Remote authenticated exploit as Client on service Service: an attacker able to authenticate as client Client and access Service from a direction used by Client can send a message with malicious content that, after authentication, can exploit a bug in Service.

P.V.CCCvsCCSAC.2

P.V.CSAPNaS.3

Remote anonymous exploit on service Service from LogicalSubnet: an attacker with access to a subnet LogicalSubnet can use a privileged network path to service Service and send a message containing malicious content that, without authentication, can exploit a bug in Service.

P.V.OSAPNaS.3

P.V.SPNaS.2

Remote authenticated exploit on service Service via reverse proxy Client: a malicious user or attacker able send messages to Service via reverse proxy Client can send a malicious request that can exploit a bug in Service after authentication.

P.W.CCCS.3

Worm propagation exploit on service Service from Client: an infected client Client can send a message containing malware that without authentication, can exploit a bug in Service and infect the process.

SC.A.HuCAPmSC.6.2

Suspended channels from Client to vulnerable service Service via LogicalSubnet are not available: the firewall rules allowing access by client Client to service Service may be disabled if the risk of an expoit by an attacker on subnet LogicalSubnet is too high. . However, this cuts privileged network paths, so communication between Client and Service via that subnet will become unavailable.

SC.A.HuSAPmSC.6.2

Suspended channels to vulnerable service Service via LogicalSubnet cuts availability: the firewall rules allowing access to service Service via LogicalSubnet may be suspended if necessary to prevent attacks. However, this cuts privileged network paths, so communication with Service via that subnet will become unavailable.