BaseIncomplete

CWE-1246Improper Write Handling in Limited-write Non-Volatile Memories

Category: other

Description

The product does not implement or incorrectly implements wear leveling operations in limited-write non-volatile memories.

Common consequences· 1

  • Availability — DoS: Instability
    If wear leveling is improperly implemented, attackers may be able to programmatically cause the storage to become unreliable within a much shorter time than would normally be expected.

Potential mitigations· 1

  • [Architecture and Design, Implementation, Testing] Include secure wear leveling algorithms and ensure they may not be bypassed.

Related CAPEC attack patterns· 1

CAPEC-212

References

  1. https://cwe.mitre.org/data/definitions/1246.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternFunctionality Misusecapec-212100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Prevention of Lock Bit Modification
CWE
Insufficient Granularity of Address Regions Protected by Register Locks
CWE
Improper Protection Against Voltage and Clock Glitches
CWE
Improper Access Control for Register Interface
CWE
Improper Restriction of Software Interfaces to Hardware Features
CWE
Improper Handling of Overlap Between Protected Memory Ranges
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.