CWE-1189: Improper Isolation of Shared Resources on System-on-a-Chip (SoC)
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The System-On-a-Chip (SoC) does not properly isolate shared resources between trusted and untrusted agents.
常见后果
影响范围: Access Control
技术影响: Bypass Protection Mechanism
说明: If resources being used by a trusted user are shared with an untrusted user, the untrusted user may be able to modify the functionality of the shared resource of the trusted user.
影响范围: Integrity
技术影响: Quality Degradation
说明: The functionality of the shared resource may be intentionally degraded.
潜在缓解措施
阶段: Architecture and Design
策略: Separation of Privilege
检测方法
方法: Automated Dynamic Analysis
有效性: High
观察示例
参考: CVE-2020-8698
Processor has improper isolation of shared resources allowing for information disclosure.
参考: CVE-2019-6260
Baseboard Management Controller (BMC) device implements Advanced High-performance Bus (AHB) bridges that do not require authentication for arbitrary read and write access to the BMC's physical address space from the host, and possibly the network [REF-1138].
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | - |