CWE-1257: Improper Access Control Applied to Mirrored or Aliased Memory Regions

Base Incomplete Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

Aliased or mirrored memory regions in hardware designs may have inconsistent read/write permissions enforced by the hardware. A possible result is that an untrusted agent is blocked from accessing a memory region but is not blocked from accessing the corresponding aliased memory region.

常见后果

影响范围: Confidentiality

技术影响: Read Memory

影响范围: Integrity

技术影响: Modify Memory

影响范围: Availability

技术影响: DoS: Instability

潜在缓解措施

阶段: Architecture and Design Implementation

描述: The checks should be applied for consistency access rights between primary memory regions and any mirrored or aliased memory regions. If different memory protection units (MPU) are protecting the aliased regions, their protected range definitions and policies should be synchronized.

阶段: Architecture and Design Implementation

描述: The controls that allow enabling memory aliases or changing the size of mapped memory regions should only be programmable by trusted software components.

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

Memory Hardware (Undetermined) Processor Hardware (Undetermined) Microcontroller Hardware (Undetermined) Network on Chip Hardware (Undetermined) System on Chip (Undetermined)

关键信息

CWE ID: CWE-1257

抽象级别: Base

结构: Simple

状态: Incomplete

CWE-1257: Improper Access Control Applied to Mirrored or Aliased Memory Regions

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1257: Improper Access Control Applied to Mirrored or Aliased Memory Regions

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-284

CanPrecede CWE-119

相关攻击模式