Security Model
The application threat model is here and the full report is here. The next text is the short one.
Created on 20.12.2020 23:43:57
| Not Started | 0 |
| Not Applicable | 1 |
| Needs Investigation | 19 |
| Mitigation Implemented | 3 |
| Total | 23 |
| Total Migrated | 0 |
1. An adversary may block access to the application or API hosted on SMS sender through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on SMS sender through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
2. An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
3. An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
4. An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
5. An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.Angular through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
6. An adversary may gain unauthorized access to Azure Redis Cache account in a subscription [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | An adversary may gain unauthorized access to Azure Redis Cache account in a subscription |
| Control Category | Data |
| Effort | Low |
7. An adversary can gain access to sensitive data by sniffing traffic to Azure Redis Cache [State: Mitigation Implemented] [Priority: High]
| Category | Information Disclosure |
| Description | An adversary can gain access to sensitive data by sniffing traffic to Azure Redis Cache |
| Control Category | Technology |
| Effort | Low |
8. An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
9. An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack [State: Needs Investigation] [Priority: High]
| Category | Denial Of Service |
| Description | An adversary may block access to the application or API hosted on PostOffice.API through a denial of service attack |
| Control Category | Technology |
| Effort | Medium |
10. A compromised access key may permit an adversary to have more access than intended to an MongoDB instance [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | A compromised access key may permit an adversary to have over-privileged access to an MongoDB instance |
| Control Category | Technology |
| Effort | Medium |
11. An adversary may gain unauthorized access to MongoDB account in a subscription [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | An adversary may gain unauthorized access to MongoDB account in a subscription |
| Control Category | Data |
| Effort | Low |
12. An adversary may directly connect to MongoDB from anywhere [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | An adversary may directly connect to MongoDB from anywhere since MongoDB does not have any Firewall restrictions that can be enforced. |
| Control Category | Data |
| Effort | Medium |
13. An adversary may read unauthorized content stored in MongoDB [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | An adversary may gain elevated privileges on the document stored in MongoDB storage |
| Control Category | Data |
| Effort | Low |
14. An adversary may gain elevated privileges on MongoDB NoSQL Database [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | An adversary may gain elevated privileges on the contents of MongoDB if over-privileged master or read-only keys are used to connect |
| Control Category | Data |
| Effort | Medium |
15. An adversary can gain unauthorized access to MongoDB due to loose authorization rules [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | Database access should be configured with roles and privilege based on least privilege and need to know principle |
| Control Category | Data |
| Effort | Medium |
16. An adversary can gain unauthorized access to Azure SQL database due to weak account policy [State: Needs Investigation] [Priority: High]
| Category | Elevation Of Privilege |
| Description | Due to poorly configured account policies, adversary can launch brute force attacks on MongoDB |
| Control Category | Data |
| Effort | Medium |
17. An adversary can gain unauthorized access to database due to lack of network access protection [State: Mitigation Implemented] [Priority: High]
| Category | Elevation Of Privilege |
| Description | If there is no restriction at network or host firewall level, to access the database then anyone can attempt to connect to the database from an unauthorized location |
| Control Category | Data |
| Effort | Low |
18. An adversary can gain access to sensitive data by performing SQL injection [State: Not Applicable] [Priority: High]
| Category | Information Disclosure |
| Description | SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. The primary form of SQL injection consists of direct insertion of code into user-input variables that are concatenated with SQL commands and executed. A less direct attack injects malicious code into strings that are destined for storage in a table or as metadata. When the stored strings are subsequently concatenated into a dynamic SQL command, the malicious code is executed. |
| Control Category | Process |
| Effort | Medium |
19. An adversary can abuse poorly managed MongoDB's access keys [State: Needs Investigation] [Priority: Medium]
| Category | Information Disclosure |
| Description | An adversary can abuse poorly managed MongoDB's access keys and gain unauthorized access to storage |
| Control Category | Process |
| Effort | Medium |
20. An adversary can gain access to sensitive PII or HBI data in MongoDB [State: Needs Investigation] [Priority: High]
| Category | Information Disclosure |
| Description | Additional controls like Transparent Data Encryption, Column Level Encryption, EKM etc. provide additional protection mechanism to high value PII or HBI data. |
| Control Category | Data |
| Effort | Low |
21. An adversary may gain access to sensitive clear-text data in CosmosDB [State: Needs Investigation] [Priority: High]
| Category | Information Disclosure |
| Description | An adversary may gain access to sensitive clear-text data in DocumentDB storage |
| Control Category | Data |
| Effort | Low |
22. An adversary may replay stolen long-lived Resource tokens of CosmosDB [State: Needs Investigation] [Priority: High]
| Category | Spoofing |
| Description | An adversary may get access to Resouce tokens used to authenticate to DocumentDB. If the lifetime of these tokens is not finite, the adversary may replay the stolen tokens for a long time. |
| Control Category | Technology |
| Effort | Low |
23. An adversary can gain unauthorized access to MongoDB due to weak CORS configuration [State: Mitigation Implemented] [Priority: High]
| Category | Spoofing |
| Description | An adversary can gain gain unauthorized access to MongoDB due to weak CORS configuration |
| Control Category | Technology |
| Effort | Low |
