CAPEC Related Weakness
Leveraging Active Man in the Middle Attacks to Bypass Same Origin Policy
CWE-300Channel Accessible by Non-Endpoint ('Man-in-the-Middle')
Utilizing REST's Trust in the System Resource to Register Man in the Middle
CWE-287Improper Authentication
CWE-300Channel Accessible by Non-Endpoint ('Man-in-the-Middle')
CWE-693Protection Mechanism Failure
CWE-724
Man in the Middle Attack
CWE-287Improper Authentication
CWE-290Authentication Bypass by Spoofing
CWE-294Authentication Bypass by Capture-replay
CWE-300Channel Accessible by Non-Endpoint ('Man-in-the-Middle')
CWE-593Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
CWE-724
Back to Top