CWE-1316Fabric-Address Map Allows Programming of Unwarranted Overlaps of Protected and Unprotected Ranges

PUBLISHEDweakness record
released 2020-12-10 · last modified 2025-12-11

Metadata

CWE ID:
CWE-1316
摘要:
Base
结构:
Simple
状态:
Draft
发布日期:
2020-12-10
更新日期:
2025-12-11

名称

Fabric-Address Map Allows Programming of Unwarranted Overlaps of Protected and Unprotected Ranges

描述

The address map of the on-chip fabric has protected and unprotected regions overlapping, allowing an attacker to bypass access control to the overlapping portion of the protected region.

Various ranges can be defined in the system-address map, either in the memory or in Memory-Mapped-IO (MMIO) space. These ranges are usually defined using special range registers that contain information, such as base address and size. Address decoding is the process of determining for which range the incoming transaction is destined. To ensure isolation, ranges containing secret data are access-control protected. Occasionally, these ranges could overlap. The overlap could either be intentional (e.g. due to a limited number of range registers or limited choice in choosing size of the range) or unintentional (e.g. introduced by errors). Some hardware designs allow dynamic remapping of address ranges assigned to peripheral MMIO ranges. In such designs, intentional address overlaps can be created through misconfiguration by malicious software. When protected and unprotected ranges overlap, an attacker could send a transaction and potentially compromise the protections in place, violating the principle of least privilege.

常见后果

范围:
Confidentiality, Integrity, Access Control, Authorization
影响:
Bypass Protection Mechanism, Read Memory, Modify Memory

相关 CWE