CWE-1298: Hardware Logic Contains Race Conditions

BaseDraft

A race condition in the hardware logic results in undermining security guarantees of the system.

View on MITRE
Back to CWE Lookup

Extended Description

A race condition in logic circuits typically occurs when a logic gate gets inputs from signals that have traversed different paths while originating from the same source. Such inputs to the gate can change at slightly different times in response to a change in the source signal. This results in a timing error or a glitch (temporary or permanent) that causes the output to change to an unwanted state before settling back to the desired state. If such timing errors occur in access control logic or finite state machines that are implemented in security sensitive flows, an attacker might exploit them to circumvent existing protections.

Technical Details

Structure
Simple

Applicable To

Languages
VerilogVHDL
Platforms

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-1298

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references

CWE-1298: Hardware Logic Contains Race Conditions | CWE Lookup | Inventive HQ