Log inLog in

Standard attack pattern

Draft

CAPEC-620: Drop Encryption Level

An attacker forces the encryption level to be lowered, thus enabling a successful attack against the encrypted data.

Last updated June 1, 2026

High

Typical severity

Per MITRE

Not rated

Likelihood of attack

Per MITRE

1

Related weaknesses

CWEs this targets

Standard

Abstraction

MITRE classification

Overview

CAPEC-620 (Drop Encryption Level) is a standard-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.

Consequences

What a successful CAPEC-620 attack can achieve.

Bypass Protection Mechanism

Affects: Access Control

Terminology & mappings

Mapped taxonomies

ATTACK: Weaken Encryption (1600)

Frequently asked questions

Common questions about CAPEC-620.

What is CAPEC-620?

An attacker forces the encryption level to be lowered, thus enabling a successful attack against the encrypted data.

What weaknesses does CAPEC-620 target?

CAPEC-620 exploits 1 CWE weakness, including CWE-757 (Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')).

How severe is CAPEC-620?

MITRE rates CAPEC-620 as High severity.

References

Attack-pattern data is sourced from the MITRE CAPEC catalog (v3.9). Weakness associations link to the corresponding CWE entries on RadicalNotion.AI.

Defend against CAPEC-620

Track the CVEs and weaknesses attackers exploit with this technique, with AI-written analysis and remediation guidance.

Start free See pricing

Mapped taxonomies

Overview

Consequences

Related weaknesses

Related attack patterns

Parent

Child

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CAPEC-620?

What weaknesses does CAPEC-620 target?

How severe is CAPEC-620?

References

Defend against CAPEC-620