BaseDraft

CWE-1190DMA Device Enabled Too Early in Boot Phase

Category: other

Description

The product enables a Direct Memory Access (DMA) capable device before the security configuration settings are established, which allows an attacker to extract data from or gain privileges on the product.

Common consequences· 1

  • Access Control — Bypass Protection Mechanism, Modify Memory
    DMA devices have direct write access to main memory and due to time of attack will be able to bypass OS or Bootloader access control.

Potential mitigations· 1

  • [Architecture and Design]Utilize an IOMMU to orchestrate IO access from the start of the boot process.

Related CAPEC attack patterns· 1

CAPEC-180

References

  1. https://cwe.mitre.org/data/definitions/1190.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternExploiting Incorrectly Configured Access Control Security Levelscapec-180100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Access Control for Volatile Memory Containing Boot Code
CWE
Power-On of Untrusted Execution Core Before Enabling Fabric Access Control
CWE
Security-Sensitive Hardware Controls with Missing Lock Bit Protection
CWE
Improper Prevention of Lock Bit Modification
CWE
Improper Access Control for Register Interface
CWE
Improper Protection against Electromagnetic Fault Injection (EM-FI)
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.