AgentReadyHomeAgent Listing

← Sales Nudge

Sales Nudge — agentic threat model

7.9AIVSS 7.9 · High

Sales Nudge poses a high-impact risk due to its deep integration with critical enterprise systems (CRM, ERP, IDP) and sensitive communication channels. While it automates productivity, a compromise could lead to unauthorized data modification or massive exfiltration of proprietary sales and financial data.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 8.5AARS uplift 0.76Factor sum 4.8/10Threat ×1.05Mitigation ×0.85
Autonomy of Action
0.60
Goal-Driven Planning
0.50
Self-Modification
0.10
Dynamic Tool Use
0.70
Persistent Memory
0.60
Contextual Awareness
0.80
Dynamic Identity
0.40
Multi-Agent Interactions
0.10
Non-Determinism
0.50
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — the underlying LLMs are not specified. Threats include prompt injection leading to unauthorized CRM writes or data leakage via model outputs.

L2 · Data Operations✓ mapped

The agent processes highly sensitive CRM, ERP, email, and call data. Threats include data exfiltration of proprietary sales pipelines and potential RAG data poisoning if malicious emails or RFPs are ingested.

L3 · Agent Frameworks✓ mapped

Orchestrates CRM updates, proposal generation, and follow-up reminders. Threats include insecure tool integration where prompt injection triggers unauthorized API calls to CRM/ERP systems.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — deployment architecture (SaaS vs. VPC) is unspecified. Threats include container compromise or unauthorized access to API keys for CRM/ERP integrations.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no explicit mention of guardrails or monitoring tools. Threats include drift in predictive risk scoring and undetected prompt injection attacks.

L6 · Security & Compliance (cross-cutting)✓ mapped

Integrates with IDPs and is built for regulated B2B environments. Threats include privilege escalation if the agent's service account inherits excessive CRM/ERP permissions.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — no multi-agent orchestration is described. Threats are limited to standard third-party API integrations (CRM, ERP) rather than complex agent-to-agent trust abuse.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).