Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    1 vulnerability found for Commercial Face Identification Service

    AVID-2023-V012

    Vulnerability from avid – Published: 2023-03-31 – Updated: 2023-03-31 ATLAS Case Study
    Summary
    MITRE's AI Red Team demonstrated a physical-domain evasion attack on a commercial face identification service with the intention of inducing a targeted misclassification. This operation had a combination of traditional ATT&CK enterprise techniques such as finding Valid account, and Executing code via an API - all interleaved with adversarial ML specific attacks.
    Risk domain
    Security
    SEP view
    S0100: Software Vulnerability, S0301: Information Leak, S0403: Adversarial Example
    Lifecycle
    L06: Deployment
    Organisations
    Affected artifacts
    References
    URL Label
    https://atlas.mitre.org/studies/AML.CS0012 Face Identification System Evasion via Physical Countermeasures

    {
      "affects": {
        "artifacts": [
          {
            "name": "Commercial Face Identification Service",
            "type": "System"
          }
        ],
        "deployer": [
          "Commercial Face Identification Service"
        ],
        "developer": []
      },
      "credit": null,
      "data_type": "AVID",
      "data_version": "0.2",
      "description": {
        "lang": "eng",
        "value": "MITRE\u0027s AI Red Team demonstrated a physical-domain evasion attack on a commercial face identification service with the intention of inducing a targeted misclassification.\nThis operation had a combination of traditional ATT\u0026CK enterprise techniques such as finding Valid account, and Executing code via an API - all interleaved with adversarial ML specific attacks.\n"
      },
      "impact": {
        "avid": {
          "lifecycle_view": [
            "L06: Deployment"
          ],
          "risk_domain": [
            "Security"
          ],
          "sep_view": [
            "S0100: Software Vulnerability",
            "S0301: Information Leak",
            "S0403: Adversarial Example"
          ],
          "taxonomy_version": "0.2"
        }
      },
      "last_modified_date": "2023-03-31",
      "metadata": {
        "vuln_id": "AVID-2023-V012"
      },
      "problemtype": {
        "classof": "ATLAS Case Study",
        "description": {
          "lang": "eng",
          "value": "Face Identification System Evasion via Physical Countermeasures"
        },
        "type": "Advisory"
      },
      "published_date": "2023-03-31",
      "references": [
        {
          "label": "Face Identification System Evasion via Physical Countermeasures",
          "type": "source",
          "url": "https://atlas.mitre.org/studies/AML.CS0012"
        }
      ],
      "reports": null
    }