BaseStable

CWE-1247Improper Protection Against Voltage and Clock Glitches

Category: other

Description

The device does not contain or contains incorrectly implemented circuitry or sensors to detect and mitigate voltage and clock glitches and protect sensitive information or software contained on the device.

Common consequences· 1

  • Confidentiality / Integrity / Availability / Access Control — Gain Privileges or Assume Identity, Bypass Protection Mechanism, Read Memory, Modify Memory, Execute Unauthorized Code or Commands

Potential mitigations· 1

  • [Architecture and Design, Implementation]

Related CAPEC attack patterns· 2

CAPEC-624CAPEC-625

References

  1. https://cwe.mitre.org/data/definitions/1247.html

Exploits (incoming)2

TypeTargetConfidenceTier
AttackPatternHardware Fault Injectioncapec-624100%live
AttackPatternMobile Device Fault Injectioncapec-625100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Handling of Faults that Lead to Instruction Skips
CWE
Improper Restriction of Software Interfaces to Hardware Features
CWE
Improper Protection against Electromagnetic Fault Injection (EM-FI)
CWE
Improper Write Handling in Limited-write Non-Volatile Memories
CWE
Semiconductor Defects in Hardware Logic with Security-Sensitive Implications
CWE
Hardware Logic with Insecure De-Synchronization between Control and Data Channels
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.