ByteOS Network

CAPEC-215:Fuzzing for application mapping

Attack Pattern ID:215

Version:v3.9

Attack Pattern Name:Fuzzing for application mapping

Abstraction:Detailed

Status:Draft

Likelihood of Attack:High

Typical Severity:Low

2Weaknesses found

Generation of Error Message Containing Sensitive Information

Generation of Error Message Containing Sensitive Information

Likelihood of Exploit-High

Mapping-Allowed

Abstraction-Base

Found in463CVEs

The product generates an error message that includes sensitive information about its environment, users, or associated data.

Impacts-

Read Application Data

Tags-

As Seen In-

Insertion of Sensitive Information into Log File

Insertion of Sensitive Information into Log File

Likelihood of Exploit-Medium

Mapping-Allowed

Abstraction-Base

Found in963CVEs

The product writes sensitive information to a log file.

Impacts-

Read Application Data

Tags-