BaseDraft

CWE-1193Power-On of Untrusted Execution Core Before Enabling Fabric Access Control

Category: other

Description

The product enables components that contain untrusted firmware before memory and fabric access controls have been enabled.

Common consequences· 1

  • Access Control — Bypass Protection Mechanism
    An untrusted component can master transactions on the HW bus and target memory or other assets to compromise the SoC boot firmware.

Potential mitigations· 1

  • [Architecture and Design]

Related CAPEC attack patterns· 2

CAPEC-1CAPEC-180

References

  1. https://cwe.mitre.org/data/definitions/1193.html

Exploits (incoming)2

TypeTargetConfidenceTier
AttackPatternExploiting Incorrectly Configured Access Control Security Levelscapec-180100%live
AttackPatternAccessing Functionality Not Properly Constrained by ACLscapec-1100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Access Control for Volatile Memory Containing Boot Code
CWE
Semiconductor Defects in Hardware Logic with Security-Sensitive Implications
CWE
Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation
CWE
DMA Device Enabled Too Early in Boot Phase
CWE
Security-Sensitive Hardware Controls with Missing Lock Bit Protection
CWE
Sensitive Information Uncleared Before Debug/Power State Transition
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.