BaseIncomplete
CWE-1257Improper Access Control Applied to Mirrored or Aliased Memory Regions
Category: memory
Description
Aliased or mirrored memory regions in hardware designs may have inconsistent read/write permissions enforced by the hardware. A possible result is that an untrusted agent is blocked from accessing a memory region but is not blocked from accessing the corresponding aliased memory region.
Common consequences· 3
- Confidentiality — Read Memory
- Integrity — Modify Memory
- Availability — DoS: Instability
Potential mitigations· 2
- [Architecture and Design, Implementation]The checks should be applied for consistency access rights between primary memory regions and any mirrored or aliased memory regions. If different memory protection units (MPU) are protecting the aliased regions, their protected range definitions and policies should be synchronized.
- [Architecture and Design, Implementation]The controls that allow enabling memory aliases or changing the size of mapped memory regions should only be programmable by trusted software components.
Related CAPEC attack patterns· 2
References
Exploits (incoming)2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Exploitation of Improperly Configured or Implemented Memory Protectionscapec-679 | 100% | live |
| AttackPattern | Infected Memorycapec-456 | 100% | live |
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-36600cve-2025-36600 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.