VariantDraft

CWE-1330Remanent Data Readable after Memory Erase

Category: memory

Description

Confidential information stored in memory circuits is readable or recoverable after being cleared or erased.

Common consequences· 1

  • Confidentiality — Modify Memory, Read Memory
    Confidential data are readable to untrusted agent.

Potential mitigations· 1

  • [Architecture and Design]

Related CAPEC attack patterns· 3

CAPEC-150CAPEC-37CAPEC-545

References

  1. https://cwe.mitre.org/data/definitions/1330.html

Exploits (incoming)3

TypeTargetConfidenceTier
AttackPatternCollect Data from Common Resource Locationscapec-150100%live
AttackPatternPull Data from System Resourcescapec-545100%live
AttackPatternRetrieve Embedded Sensitive Datacapec-37100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Sensitive Information in Resource Not Removed Before Reuse
CWE
Assumed-Immutable Data is Stored in Writable Memory
CWE
Cleartext Storage of Sensitive Information in Memory
CWE
Missing Protection Against Hardware Reverse Engineering Using Integrated Circuit (IC) Imaging Techniques
CWE
Sensitive Information Uncleared Before Debug/Power State Transition
CWE
Failure to Disable Reserved Bits
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.