BaseIncomplete

CWE-1280Access Control Check Implemented After Asset is Accessed

Category: other

Description

A product's hardware-based access control check occurs after the asset has been accessed.

Common consequences· 1

  • Access Control / Confidentiality / Integrity — Modify Memory, Read Memory, Modify Application Data, Read Application Data, Gain Privileges or Assume Identity, Bypass Protection Mechanism

Potential mitigations· 1

  • [Implementation]Implement the access control check first. Access should only be given to asset if agent is authorized.

Related CAPEC attack patterns· 1

CAPEC-180

References

  1. https://cwe.mitre.org/data/definitions/1280.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternExploiting Incorrectly Configured Access Control Security Levelscapec-180100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Physical Access Control
CWE
Hardware Logic with Insecure De-Synchronization between Control and Data Channels
CWE
Incorrect Behavior Order: Early Amplification
CWE
Hardware Logic Contains Race Conditions
CWE
Power-On of Untrusted Execution Core Before Enabling Fabric Access Control
CWE
Improper Access Control
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.