CAPEC-452: Infected Hardware
An adversary inserts malicious logic into hardware, typically in the form of a computer virus or rootkit. This logic is often hidden from the user of the hardware and works behind the scenes to achieve negative impacts. This pattern of attack focuses on hardware already fielded and used in operation as opposed to hardware that is still under development and part of the supply chain.
Last updated
Overview
CAPEC-452 (Infected Hardware) is a standard-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.
What the attacker needs
Prerequisites
- Access to the hardware currently deployed at a victim location.
Consequences
What a successful CAPEC-452 attack can achieve.
Execute Unauthorized Commands
Affects: Authorization
Frequently asked questions
Common questions about CAPEC-452.
- What is CAPEC-452?
- An adversary inserts malicious logic into hardware, typically in the form of a computer virus or rootkit. This logic is often hidden from the user of the hardware and works behind the scenes to achieve negative impacts. This pattern of attack focuses on hardware already fielded and used in operation as opposed to hardware that is still under development and part of the supply chain.
- How severe is CAPEC-452?
- MITRE rates CAPEC-452 as High severity with medium likelihood of attack.
References
Attack-pattern data is sourced from the MITRE CAPEC catalog (v3.9). Weakness associations link to the corresponding CWE entries on RadicalNotion.AI.
Defend against CAPEC-452
Track the CVEs and weaknesses attackers exploit with this technique, with AI-written analysis and remediation guidance.