Skip to main content

CCC.Vector.TH04: Index Corruption or Downgrade

Threat ID:CCC.Vector.TH04
Title:Index Corruption or Downgrade
Description:

Attackers with unauthorized access or excessive permissions may tamper with or roll back index versions, potentially restoring poisoned data or breaking downstream integrations.

Related Capabilities

IDTitleDescription
CCC.Vector.F07Index Lifecycle ManagementEnables automated or manual creation, optimization, and removal of vector indexes.
CCC.Vector.F11Query Access ControlProvides the ability to restrict who can run vector similarity or metadata filter queries, separate from data modification rights.

External Mappings

Reference IDEntry IDStrengthRemarks
MITRE-ATT&CK
T1565
0
Data Manipulation
MITRE-ATT&CK
T1485
0
Data Destruction
MITRE-ATT&CK
T1490
0
Inhibit System Recovery
MITRE-ATT&CK
T1562
0
Impair Defenses

Controls

IDTitleObjectiveControl FamilyThreat MappingsGuideline MappingsAssessment Requirements
CCC.Vector.C02Enforce Role-Based Index Lifecycle ManagementRestrict index lifecycle operations (create, delete, rollback) to privileged identities using fine-grained access controls. Vector Indexing
3
1
1
CCC.Vector.C05Enforce Index Versioning with Rollback ProtectionEnsure vector indexes are versioned and that rollback operations are authorized and auditable. Vector Indexing
3
1
1