Running older versions of child resources can expose the system to known vulnerabilities that have been addressed in more recent versions. If the version identifier is detected by an attacker, it may be possible to exploit these vulnerabilities to compromise the confidentiality, integrity, or availability of the system and its data.
Core / Ccc / Threats / DEV
Older Resource Versions are Used
CCC.Core.TH14
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Core.CP18 | Resource Versioning | The service automatically assigns versions to child resources which can be used to preserve, retrieve, and restore past iterations. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | T1027 | Obfuscated Files or Information |
| MITRE-ATT&CK | T1485 | Data Destruction |
| MITRE-ATT&CK | T1565 | Data Manipulation |
| MITRE-ATT&CK | T1489 | Service Stop |
| MITRE-ATT&CK | T1562.01 | Impair Defenses: Downgrade Attack |
| MITRE-ATT&CK | T1027 | Obfuscated Files or Information |
| MITRE-ATT&CK | T1485 | Data Destruction |
| MITRE-ATT&CK | T1565 | Data Manipulation |
| MITRE-ATT&CK | T1489 | Service Stop |