CWE-1311: Improper Translation of Security Attributes by Fabric Bridge

Base Draft Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The bridge incorrectly translates security attributes from either trusted to untrusted or from untrusted to trusted when converting from one fabric protocol to another.

常见后果

影响范围: Confidentiality Integrity Access Control

技术影响: Modify Memory Read Memory Gain Privileges or Assume Identity Bypass Protection Mechanism Execute Unauthorized Code or Commands

潜在缓解措施

阶段: Architecture and Design

描述: The translation must map signals in such a way that untrusted agents cannot map to trusted agents or vice-versa.

阶段: Implementation

描述: Ensure that the translation maps signals in such a way that untrusted agents cannot map to trusted agents or vice-versa.

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Verilog (Undetermined) VHDL (Undetermined)

技术

Not Technology-Specific (Undetermined)

关键信息

CWE ID: CWE-1311

抽象级别: Base

结构: Simple

状态: Draft

CWE-1311: Improper Translation of Security Attributes by Fabric Bridge

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

技术

关键信息

相关弱点

相关攻击模式

CWE-1311: Improper Translation of Security Attributes by Fabric Bridge

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

技术

关键信息

相关弱点

ChildOf CWE-284

相关攻击模式