|
CWE-732
|
Incorrect Permission Assignment for Critical Resource
|
|
CWE-1190
|
DMA Device Enabled Too Early in Boot Phase
|
|
CWE-1191
|
On-Chip Debug and Test Interface With Improper Access Control
|
|
CWE-1193
|
Power-On of Untrusted Execution Core Before Enabling Fabric Access Control
|
|
CWE-1220
|
Insufficient Granularity of Access Control
|
|
CWE-1268
|
Policy Privileges are not Assigned Consistently Between Control and Data Agents
|
|
CWE-1280
|
Access Control Check Implemented After Asset is Accessed
|
|
CWE-1297
|
Unprotected Confidential Information on Device is Accessible by OSAT Vendors
|
|
CWE-1311
|
Improper Translation of Security Attributes by Fabric Bridge
|
|
CWE-1315
|
Improper Setting of Bus Controlling Capability in Fabric End-point
|
|
CWE-1318
|
Missing Support for Security Features in On-chip Fabrics or Buses
|
|
CWE-1320
|
Improper Protection for Outbound Error Messages and Alert Signals
|
|
CWE-1321
|
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|