AI Agent Threat Matrix
Matrix/Privilege Escalation/T-4001
T-4001validated

Capability Override

Override declared capability restrictions to execute unauthorized operations like shell commands

Tactic

Privilege Escalation (Stage 4)

Escalate capabilities beyond declared scope or bypass authorization

Attack Class

SOUL-DELEGATE

Exploiting delegation and capability transfer mechanisms to exceed authorized scope

Evidence

validated

Reproduced in controlled lab environment (DVAA) with documented steps.

DVAA Validation

CodeBot shell execution

Detection (HackMyAgent)

PERM-001PERM-002PERM-003
npx hackmyagent secure --ci

Defense (OASB Controls)

OASB 2.1OASB 2.2OASB 2.3OASB 2.4OASB 2.5

How to Cite

AI Agent Threat Matrix T-4001 (Capability Override). OpenA2A, 2026. https://threats.opena2a.org/techniques/T-4001
← Back to Matrix