CWE-1320: Improper Protection for Outbound Error Messages and Alert Signals

Base Draft Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

Untrusted agents can disable alerts about signal conditions exceeding limits or the response mechanism that handles such alerts.

常见后果

影响范围: Availability

技术影响: DoS: Instability DoS: Crash, Exit, or Restart Reduce Reliability Unexpected State

潜在缓解措施

阶段: Architecture and Design

描述: Alert signals generated by critical events should be protected from access by untrusted agents. Only hardware or trusted firmware modules should be able to alter the alert configuration.

引入模式

阶段	说明
Architecture and Design	-
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

System on Chip (Undetermined) Microcontroller Hardware (Undetermined) Memory Hardware (Undetermined) Power Management Hardware (Undetermined) Processor Hardware (Undetermined) Test/Debug Hardware (Undetermined) Sensor Hardware (Undetermined)

关键信息

CWE ID: CWE-1320

抽象级别: Base

结构: Simple

状态: Draft

CWE-1320: Improper Protection for Outbound Error Messages and Alert Signals

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1320: Improper Protection for Outbound Error Messages and Alert Signals

弱点描述

常见后果

潜在缓解措施

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-284

相关攻击模式