CWE-1245: Improper Finite State Machines (FSMs) in Hardware Logic

Base Incomplete Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

Faulty finite state machines (FSMs) in the hardware logic allow an attacker to put the system in an undefined state, to cause a denial of service (DoS) or gain privileges on the victim's system.

常见后果

影响范围: Availability Access Control

技术影响: Unexpected State DoS: Crash, Exit, or Restart DoS: Instability Gain Privileges or Assume Identity

潜在缓解措施

阶段: Architecture and Design Implementation

描述: Define all possible states and handle all unused states through default statements. Ensure that system defaults to a secure state.

有效性: High

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

System on Chip (Undetermined)

关键信息

CWE ID: CWE-1245

抽象级别: Base

结构: Simple

状态: Incomplete

CWE-1245: Improper Finite State Machines (FSMs) in Hardware Logic

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1245: Improper Finite State Machines (FSMs) in Hardware Logic

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-684

相关攻击模式