CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses

Base Incomplete Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

On-chip fabrics or buses either do not support or are not configured to support privilege separation or other security features, such as access control.

常见后果

影响范围: Confidentiality Integrity Access Control Availability

技术影响: DoS: Crash, Exit, or Restart Read Memory Modify Memory

潜在缓解措施

阶段: Architecture and Design

描述: If fabric does not support security features, implement security checks in a bridge or any component that is between the master and the fabric. Alternatively, connect all fabric slaves that do not have any security assets under one such fabric and connect peripherals with security assets to a different fabric that supports security features.

检测方法

方法: Architecture or Design Review

Review the fabric specification and ensure that it contains signals to transfer security-sensitive signals.

有效性: High

方法: Manual Static Analysis - Source Code

Lack of security features can also be confirmed through manual RTL review of the fabric RTL.

有效性: High

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

Processor Hardware (Undetermined) Not Technology-Specific (Undetermined)

关键信息

CWE ID: CWE-1318

抽象级别: Base

结构: Simple

状态: Incomplete

CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses

弱点描述

常见后果

潜在缓解措施

检测方法

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses

弱点描述

常见后果

潜在缓解措施

检测方法

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-693

相关攻击模式