Elevation by Changing the Execution Flow in Web Facing API Category: Elevation Of Privilege Description: An attacker may pass data into Web Facing API in order to change the flow of program execution within Web Facing API to the attacker’s choosing. Web Facing API May be Subject to Elevation of Privilege Using Remote Code Execution Category: Elevation Of Privilege Description: Human User may be able to remotely execute code for Web Facing API. Elevation Using...
- Elevation by Changing the Execution Flow in Web Facing API
Category: Elevation Of Privilege
Description: An attacker may pass data into Web Facing API in order to change the flow of program execution within Web Facing API to the attacker’s choosing.
- Web Facing API May be Subject to Elevation of Privilege Using Remote Code Execution
Category: Elevation Of Privilege
Description: Human User may be able to remotely execute code for Web Facing API.
- Elevation Using Impersonation
Category: Elevation Of Privilege
Description: Web Facing API may be able to impersonate the context of Human User in order to gain additional privilege.
- Data Flow HTTPS Is Potentially Interrupted
Category: Denial Of Service
Description: An external agent interrupts data flowing across a trust boundary in either direction.
- Potential Process Crash or Stop for Web Facing API
Category: Denial Of Service
Description: Web Facing API crashes, halts, stops or runs slowly; in all cases violating an availability metric.
- Potential Data Repudiation by Web Facing API
Category: Repudiation
Description: Web Facing API claims that it did not receive data from a source outside the trust boundary.
