CAPEC-122: Privilege Abuse

Description
An adversary is able to exploit features of the target that should be reserved for privileged users or administrators but are exposed to use by lower or non-privileged accounts. Access to sensitive information and functionality must be controlled to ensure that only authorized users are able to access these resources.
Extended Description

If access control mechanisms are absent or misconfigured, a user may be able to access resources that are intended only for higher level users. An adversary may be able to exploit this to utilize a less trusted account to gain information and perform activities reserved for more trusted accounts.

This attack differs from privilege escalation and other privilege stealing attacks in that the adversary never actually escalates their privileges but instead is able to use a lesser degree of privilege to access resources that should be (but are not) reserved for higher privilege accounts. Likewise, the adversary does not exploit trust or subvert systems - all control functionality is working as configured but the configuration does not adequately protect sensitive resources at an appropriate level.

Severity :

Medium

Possibility :

High

Type :

Meta
Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-1: Accessing Functionality Not Properly Constrained by ACLs Accessing Functionality Not Properly Constrained by ACLs CAPEC-17: Using Malicious Files Using Malicious Files CAPEC-180: Exploiting Incorrectly Configured Access Control Security Levels Exploiting Incorrectly Configured Access Control Security Levels CAPEC-201: Serialized Data External Linking Serialized Data External Linking CAPEC-503: WebView Exposure WebView Exposure CAPEC-664: Server Side Request Forgery Server Side Request Forgery
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • The target must have misconfigured their access control mechanisms such that sensitive information, which should only be accessible to more trusted users, remains accessible to less trusted users.
  • The adversary must have access to the target, albeit with an account that is less privileged than would be appropriate for the targeted resources.
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Low Adversary can leverage privileged features they already have access to without additional effort or skill. Adversary is only required to have access to an account with improper priveleges.
Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

ATTACK | Abuse Elevation Control Mechanism
Resources required

None: No specialized resources are required to execute this type of attack. The ability to access the target is required.

Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

CWE-269: Improper Privilege Management

CWE-732: Incorrect Permission Assignment for Critical Resource

CWE-1317: Improper Access Control in Fabric Bridge

Visit http://capec.mitre.org/ for more details.