BaseIncomplete

CWE-1423Exposure of Sensitive Information caused by Shared Microarchitectural Predictor State that Influences Transient Execution

Category: data-exposure

Description

Shared microarchitectural predictor state may allow code to influence transient execution across a hardware boundary, potentially exposing data that is accessible beyond the boundary over a covert channel.

Common consequences· 1

  • Confidentiality — Read Memory

Potential mitigations· 5

  • [Architecture and Design]
  • [Architecture and Design]
  • [Architecture and Design]
  • [Implementation]
  • [Build and Compilation]

References

  1. https://cwe.mitre.org/data/definitions/1423.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Exposure of Sensitive Information caused by Incorrect Data Forwarding during Transient Execution
CWE
Exposure of Sensitive Information during Transient Execution
CWE
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution
CWE
Information Exposure through Microarchitectural State after Transient Execution
CWE
Non-Transparent Sharing of Microarchitectural Resources
CWE
Sensitive Information Uncleared Before Debug/Power State Transition
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.