CWE-1193: Power-On of Untrusted Execution Core Before Enabling Fabric Access Control

Base Draft Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The product enables components that contain untrusted firmware before memory and fabric access controls have been enabled.

常见后果

影响范围: Access Control

技术影响: Bypass Protection Mechanism

说明: An untrusted component can master transactions on the HW bus and target memory or other assets to compromise the SoC boot firmware.

潜在缓解措施

阶段: Architecture and Design

关键信息

CWE ID: CWE-1193

抽象级别: Base

结构: Simple

状态: Draft

相关弱点
ChildOf CWE-696

Incorrect Behavior Order

Class
相关攻击模式
CAPEC-1 CAPEC-180
返回列表