Risk
Context-Window Overwrite/Manipulation
Description
User input or attacker manipulates the context window, evicting important instructions or injecting malicious context.
Example
User submits very long input to push safety instructions out of the context window.
Assets Affected
Model Inference endpoint
Meta Prompt
System Prompt
User Prompt
Mitigation
- Limit input size
- Enforce context structure
- Monitor prompt-token usage
- Test for context overwrites
Standards Mapping
- ISO 42001: A.9.4, A.6.2.6
- OWASP Top 10 for LLM: LLM01
- NIST AI RMF: MEASURE 2.4, MANAGE 2.4