Vulnerability template

Every Vulnerability should follow this template.

Description
A vulnerability is a weakness in an application (frequently a broken or missing countermeasure) that enables an attack to succeed. Be sure you don't put [attacks] or [countermeasures] in this category.


 * 1) Start with a one-sentence description of the vulnerability
 * 2) What is the problem that creates the vulnerability?
 * 3) What are the attacks that target this vulnerability?
 * 4) What are the technical impacts of this vulnerability?

Risk Factors

 * Talk about the factors that make this vulnerability likely or unlikely to actually happen
 * Discuss the technical impact of a successful exploit of this vulnerability
 * Consider the likely [business impacts] of a successful attack

Examples

 * Short example name
 * One paragraph example description with links


 * Short example name
 * One paragraph example description with links

Related Attacks

 * Attack 1
 * Attack 2

Related Vulnerabilities

 * Vulnerability 1
 * Vulnerabiltiy 2

Note: the contents of "Related Problems" sections should be placed here

Related Countermeasures

 * Countermeasure 1
 * Countermeasure 2

Note: contents of "Avoidance and Mitigation" Sections should be placed here

Related Technical Impacts

 * Technical Impact 1
 * Technical Impact 2