CWE-1253: Incorrect Selection of Fuse Values

Base Draft Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The logic level used to set a system to a secure state relies on a fuse being unblown. An attacker can set the system to an insecure state merely by blowing the fuse.

常见后果

影响范围: Access Control Authorization

技术影响: Bypass Protection Mechanism Gain Privileges or Assume Identity

影响范围: Availability

技术影响: DoS: Crash, Exit, or Restart

影响范围: Confidentiality

技术影响: Read Memory

影响范围: Integrity

技术影响: Modify Memory Execute Unauthorized Code or Commands

潜在缓解措施

阶段: Architecture and Design

描述: Logic should be designed in a way that blown fuses do not put the product into an insecure state that can be leveraged by an attacker.

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

Not Technology-Specific (Undetermined)

关键信息

CWE ID: CWE-1253

抽象级别: Base

结构: Simple

状态: Draft

CWE-1253: Incorrect Selection of Fuse Values

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1253: Incorrect Selection of Fuse Values

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-693

相关攻击模式