CWE-1274Improper Access Control for Volatile Memory Containing Boot Code

PUBLISHEDweakness record
released 2020-02-24 · last modified 2025-12-11

Metadata

CWE ID:
CWE-1274
摘要:
Base
结构:
Simple
状态:
Stable
发布日期:
2020-02-24
更新日期:
2025-12-11

名称

Improper Access Control for Volatile Memory Containing Boot Code

描述

The product conducts a secure-boot process that transfers bootloader code from Non-Volatile Memory (NVM) into Volatile Memory (VM), but it does not have sufficient access control or other protections for the Volatile Memory.

Adversaries could bypass the secure-boot process and execute their own untrusted, malicious boot code. As a part of a secure-boot process, the read-only-memory (ROM) code for a System-on-Chip (SoC) or other system fetches bootloader code from Non-Volatile Memory (NVM) and stores the code in Volatile Memory (VM), such as dynamic, random-access memory (DRAM) or static, random-access memory (SRAM). The NVM is usually external to the SoC, while the VM is internal to the SoC. As the code is transferred from NVM to VM, it is authenticated by the SoC's ROM code.

常见后果

范围:
Access Control, Integrity
影响:
Modify Memory, Execute Unauthorized Code or Commands, Gain Privileges or Assume Identity
注释:
If the volatile-memory-region protections or access controls are insufficient to prevent modifications from an adversary or untrusted agent, the secure boot may be bypassed or replaced with the execution of an adversary's code.

相关 CWE