BaseIncomplete

CWE-1252CPU Hardware Not Configured to Support Exclusivity of Write and Execute Operations

Category: config

Description

The CPU is not configured to provide hardware support for exclusivity of write and execute operations on memory. This allows an attacker to execute data from all of memory.

Common consequences· 1

  • Confidentiality / Integrity — Execute Unauthorized Code or Commands
    Without configuring exclusivity of operations via segregated areas of memory, an attacker may be able to inject malicious code onto memory and later execute it.

Potential mitigations· 2

  • [Architecture and Design]
  • [Integration]

Related CAPEC attack patterns· 1

CAPEC-679

References

  1. https://cwe.mitre.org/data/definitions/1252.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternExploitation of Improperly Configured or Implemented Memory Protectionscapec-679100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Security-Sensitive Hardware Controls with Missing Lock Bit Protection
CWE
Insufficient Granularity of Address Regions Protected by Register Locks
CWE
Improper Prevention of Lock Bit Modification
CWE
Improper Handling of Faults that Lead to Instruction Skips
CWE
Power-On of Untrusted Execution Core Before Enabling Fabric Access Control
CWE
Information Exposure through Microarchitectural State after Transient Execution
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.