Skip to main content
← Back to CCC Relational Database Management System Features

CCC.TH01: Access Control is Misconfigured

Threat ID:CCC.TH01
Title:Access Control is Misconfigured
Description:

Misconfigured access controls may grant excessive privileges or fail to restrict unauthorized access to sensitive resources. This could result in unintended data exposure or unauthorized actions being performed within the system.

Related Features:
IDTitleDescription
CCC.F06Identity Based Access ControlProvides the ability to determine access to resources based on attributes associated with a user identity.
MITRE ATT&CK Techniques:
T1078
T1548
T1203
T1098
T1484
T1546
T1537
T1567
T1048
T1485
T1565
T1027
Related Controls:
IDTitle
CCC.C02Ensure Data Encryption at Rest for All Stored Data
CCC.C03Implement Multi-factor Authentication (MFA) for Access
CCC.C04Log All Access and Changes
CCC.C05Prevent Access from Untrusted Entities