Loading EN-304-620-1.md +8 −8 Original line number Diff line number Diff line Loading @@ -696,7 +696,7 @@ The mitigations that reduce risk by type are: - Activity exposure via unauthorised log access - Out-of-the-box configuration that necessarily requires modification to be secure ### C.4.x TH-UEV: Unknown exploitable vulnerabilities ### C.4.x TH-UEVU: Unknown exploitable vulnerabilities Attacker may use unknown exploitable vulnerabilities in the product implementation to get unauthorized access to product assets. Loading Loading @@ -726,7 +726,7 @@ Mitigations for Impact: * High to Low: NPII-\*, LOGG ### C.4.x TH-KEV: Known exploitable vulnerabilities ### C.4.x TH-KEVU: Known exploitable vulnerabilities Attacker may use known exploitable vulnerabilities in the product implementation to get unauthorized access to product assets. Loading @@ -752,7 +752,7 @@ Mitigations for Likelihood: * High to Low: KEVD, KEVA, (KEVT or SCAN), KEVM, (SUAP or SUAO), VULH ### C.4.x TH-UEA: Unauthorized endpoint access ### C.4.x TH-UEAC: Unauthorized endpoint access Attacker may gain unauthorized access to an endpoint in a manner not under control of the product, exposing product assets. Loading Loading @@ -782,7 +782,7 @@ Mitigations for Impact: * High to Medium: AUTH-3, AUTH-4, AUTH-5, NPII-1, NPII-2, NPII-4 ### C.4.x TH-RDP: Attacker launches denial of service attack on manufacturer remote data processing ### C.4.x TH-RDOS: Attacker launches denial of service attack on remote data processing solution | Risk factors | Likelihood | Security profiles | |-------------------------------|------------|-------------------| Loading Loading @@ -810,7 +810,7 @@ Mitigations for Impact: * High to Low: FDRP, LMEM, FAIR ### C.4.x TH-MTM: Machine-in-the-middle ### C.4.x TH-MITM: Machine-in-the-middle Attacker attempts to read or modify traffic by capturing and relaying activity to and from endpoints. Loading Loading @@ -840,7 +840,7 @@ Mitigations for Impact: * High to Low: LOGG, NPII-2 ### C.4.x TH-LEK: Attacker reads sensitive data sent outside the VPN connection by the product. ### C.4.x TH-LEAK: Attacker reads sensitive data sent outside the VPN connection by the product. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| Loading Loading @@ -868,7 +868,7 @@ Mitigations for Impact: * High to Low: NPII-\*, NPII- LOGG ### C.4.x TH-PLN: Transmitting data in the clear ### C.4.x TH-PLAN: Transmitting data in the clear | Risk factors | Likelihood | Security profiles | |--------------------|------------|-------------------| Loading Loading @@ -896,7 +896,7 @@ Mitigations for Impact: * High to Medium: CRYPT-\*, SCDL-\*, ROUT-\*, AUTH-\* ### C.4.x TH-UNA: Someone is trying to login to your VPN ### C.4.x TH-UNAA: Unauthorized attempts to authenticate | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| Loading Loading
EN-304-620-1.md +8 −8 Original line number Diff line number Diff line Loading @@ -696,7 +696,7 @@ The mitigations that reduce risk by type are: - Activity exposure via unauthorised log access - Out-of-the-box configuration that necessarily requires modification to be secure ### C.4.x TH-UEV: Unknown exploitable vulnerabilities ### C.4.x TH-UEVU: Unknown exploitable vulnerabilities Attacker may use unknown exploitable vulnerabilities in the product implementation to get unauthorized access to product assets. Loading Loading @@ -726,7 +726,7 @@ Mitigations for Impact: * High to Low: NPII-\*, LOGG ### C.4.x TH-KEV: Known exploitable vulnerabilities ### C.4.x TH-KEVU: Known exploitable vulnerabilities Attacker may use known exploitable vulnerabilities in the product implementation to get unauthorized access to product assets. Loading @@ -752,7 +752,7 @@ Mitigations for Likelihood: * High to Low: KEVD, KEVA, (KEVT or SCAN), KEVM, (SUAP or SUAO), VULH ### C.4.x TH-UEA: Unauthorized endpoint access ### C.4.x TH-UEAC: Unauthorized endpoint access Attacker may gain unauthorized access to an endpoint in a manner not under control of the product, exposing product assets. Loading Loading @@ -782,7 +782,7 @@ Mitigations for Impact: * High to Medium: AUTH-3, AUTH-4, AUTH-5, NPII-1, NPII-2, NPII-4 ### C.4.x TH-RDP: Attacker launches denial of service attack on manufacturer remote data processing ### C.4.x TH-RDOS: Attacker launches denial of service attack on remote data processing solution | Risk factors | Likelihood | Security profiles | |-------------------------------|------------|-------------------| Loading Loading @@ -810,7 +810,7 @@ Mitigations for Impact: * High to Low: FDRP, LMEM, FAIR ### C.4.x TH-MTM: Machine-in-the-middle ### C.4.x TH-MITM: Machine-in-the-middle Attacker attempts to read or modify traffic by capturing and relaying activity to and from endpoints. Loading Loading @@ -840,7 +840,7 @@ Mitigations for Impact: * High to Low: LOGG, NPII-2 ### C.4.x TH-LEK: Attacker reads sensitive data sent outside the VPN connection by the product. ### C.4.x TH-LEAK: Attacker reads sensitive data sent outside the VPN connection by the product. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| Loading Loading @@ -868,7 +868,7 @@ Mitigations for Impact: * High to Low: NPII-\*, NPII- LOGG ### C.4.x TH-PLN: Transmitting data in the clear ### C.4.x TH-PLAN: Transmitting data in the clear | Risk factors | Likelihood | Security profiles | |--------------------|------------|-------------------| Loading Loading @@ -896,7 +896,7 @@ Mitigations for Impact: * High to Medium: CRYPT-\*, SCDL-\*, ROUT-\*, AUTH-\* ### C.4.x TH-UNA: Someone is trying to login to your VPN ### C.4.x TH-UNAA: Unauthorized attempts to authenticate | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| Loading
