BaseStable

CWE-1300Improper Protection of Physical Side Channels

Category: other

Description

The device does not contain sufficient protection mechanisms to prevent physical side channels from exposing sensitive information due to patterns in physically observable phenomena such as variations in power consumption, electromagnetic emissions (EME), or acoustic emissions.

Common consequences· 1

  • Confidentiality — Read Memory, Read Application Data

Potential mitigations· 2

  • [Architecture and Design]Apply blinding or masking techniques to implementations of cryptographic algorithms.
  • [Implementation]Add shielding or tamper-resistant protections to the device to increase the difficulty of obtaining measurements of the side-channel.

Related CAPEC attack patterns· 2

CAPEC-189CAPEC-699

References

  1. https://cwe.mitre.org/data/definitions/1300.html

Exploits (incoming)2

TypeTargetConfidenceTier
AttackPatternEavesdropping on a Monitorcapec-699100%live
AttackPatternBlack Box Reverse Engineeringcapec-189100%live

(incoming)1

TypeTargetConfidenceTier
VulnerabilityCVE-2025-10890cve-2025-108900%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Protection against Electromagnetic Fault Injection (EM-FI)
CWE
Improper Restriction of Software Interfaces to Hardware Features
CWE
Improper Protection Against Voltage and Clock Glitches
CWE
Hardware Logic with Insecure De-Synchronization between Control and Data Channels
CWE
Semiconductor Defects in Hardware Logic with Security-Sensitive Implications
CWE
Improper Physical Access Control
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.