CWE-1245

Improper Finite State Machines (FSMs) in Hardware Logic

AI Translation Available

Faulty finite state machines (FSMs) in the hardware logic allow an attacker to put the system in an undefined state, to cause a denial of service (DoS) or gain privileges on the victim's system.

Status

incomplete

Abstraction

base

Affected Platforms

System on Chip

Extended Description

AI Translation

The functionality and security of the system heavily depend on the implementation of FSMs. FSMs can be used to indicate the current security state of the system. Lots of secure data operations and data transfers rely on the state reported by the FSM.

Technical Details

AI Translation

Common Consequences

availability access control

Impacts

unexpected state dos: crash, exit, or restart dos: instability gain privileges or assume identity

Potential Mitigations

Phases:

architecture and design implementation

Descriptions:

• Define all possible states and handle all unused states through default statements. Ensure that system defaults to a secure state.

AI Generated Translation

Common Consequences

disponibilità controllo degli accessi

Impacts

stato inaspettato dos: crash, uscita o riavvio dos: instabilità ottenere privilegi o assumere identità

Potential Mitigations

Phases:

architettura e design implementazione

Descriptions:

• Definisci tutti gli stati possibili e gestisci tutti gli stati non utilizzati tramite istruzioni default. Assicurati che il sistema preveda uno stato sicuro di default.

CWE-1245

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter