CWE-1261 |
The hardware logic does not effectively handle when single-event upsets (SEUs) occur. |
CWE-1262 |
Memory-mapped registers provide access to hardware functionality from software and if not properly secured can result in loss of confidentiality and integrity. |
CWE-1263 |
The product is designed such that certain parts be restricted yet does not sufficiently protect against an unauthorized actor’s ability to physically access these restricted regions of the product. |
CWE-1264 |
The hardware logic for error handling and security checks can incorrectly forward data before the security check is complete. |
CWE-1265 |
During execution of non-reentrant code, the software performs a call that unintentionally produces a nested invocation of the non-reentrant code. |
CWE-1266 |
The product does not properly provide a capability for the product administrator to remove sensitive data at the time the product is decommissioned. A scrubbing capability could be missing, insufficient, or incorrect. |
CWE-1267 |
The product uses an obsolete encoding mechanism to implement access controls. |
CWE-1268 |
The product's hardware-enforced access control for a particular resource improperly accounts for privilege discrepancies between control and write policies.
|
CWE-1269 |
The product released to market is released in pre-production or manufacturing configuration. |
CWE-127 |
The software reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations prior to the targeted buffer. |