Threat Sg.DA.L3SSg2AC-b.1

URI: Sg.DA.L3SSg2AC-b.1

Description: Routing between FromSubnet and ToSubnet re-disabled at Gateway: if an attacker has admin rights on host Gateway in a context where it is connected to FromSubnet and ToSubnet, then they can override a default policy to drop connection being routed between those subnets.

Threat Type: Primary Threat

Matching Pattern:

MP-L3SSg2AC-b

Finds a gateway from one IP subnet to an IP subnet, along with the segment asset representing the route via the gateway, and a context in which the gateway is connected to both subnets, where this route is not blocked by default.

(empty)

CSG-BlockGatewayRoute

ConnectionsAllowed at Role_FwdSegment

(empty)

Threat Sg.DA.L3SSg2AC-b.1

MP-L3SSg2AC-b

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (1)

Misbehaviour Sets (1)

Control Strategies (0)