ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CVE
Google Cloud Platform (GCP)
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 9.0 Enterprise and VERIS 1.3.5.
Change versions here.
Home
Mapping Frameworks
VERIS Home
Exploit a misconfiguration (vs vuln or weakness)
VERIS
action.hacking.variety.Exploit misconfig
Mappings
Mappings
ATT&CK Version
9.0
ATT&CK Domain
Enterprise
VERIS
1.3.5
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.002
Abuse Elevation Control Mechanism: Bypass User Account Control
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.003
Abuse Elevation Control Mechanism: Sudo and Sudo Caching
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.004
Abuse Elevation Control Mechanism: Elevated Execution with Prompt
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1068
Exploitation for Privilege Escalation
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1190
Exploit Public-Facing Application
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1210
Exploitation of Remote Services
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1212
Exploitation for Credential Access
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1558.004
Steal or Forge Kerberos Tickets: AS-REP Roasting
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.001
Hijack Execution Flow: DLL Search Order Hijacking
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.002
Hijack Execution Flow: DLL Side-Loading
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.005
Hijack Execution Flow: Executable Installer File Permissions Weakness
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.010
Hijack Execution Flow: Services File Permissions Weakness
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.011
Hijack Execution Flow: Services Registry Permissions Weakness
