CWE-1318: CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses
Description
View on MITREExtended Description
Extended Description
Technical Details
- Structure
- Simple
- Vulnerability Mapping
- ALLOWED
Applicable To
Security Consequences
Scope
Impact
Mitigation Strategies
Phase
Description
If fabric does not support security features, implement security checks in a bridge or any component that is between the master and the fabric. Alternatively, connect all fabric slaves that do not have any security assets under one such fabric and connect peripherals with security assets to a different fabric that supports security features.
Detection Methods
No detection method information available for this CWE.
Code Examples & CVEs
No examples or observed CVEs available for this CWE.
CWE Relationships
No relationship information available for this CWE.
Frequently Asked Questions
What is CWE-1318: CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses?+
CWE-1318: CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses is a Common Weakness Enumeration (CWE) entry maintained by MITRE. Description Extended Description
What are the security consequences of CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses?+
If exploited, CWE-1318 (CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses) it can compromise DoS: Crash, Exit, or Restart, Read Memory and Modify Memory, leading to outcomes such as Scope: Confidentiality, Integrity, Access Control and Availability Likelihood: Medium.
How do you prevent or mitigate CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses?+
Recommended mitigations for CWE-1318 include: If fabric does not support security features, implement security checks in a bridge or any component that is between the master and the fabric. Alternatively, connect all fabric slaves that do not have any security assets under one such fabric and connect peripherals with security assets to a different fabric that supports security features.
Which programming languages are affected by CWE-1318: Missing Support for Security Features in On-chip Fabrics or Buses?+
CWE-1318 commonly affects Languages. Note that weaknesses are often language-agnostic patterns, so secure coding practices apply broadly.
What is the difference between a CWE and a CVE?+
A CWE (Common Weakness Enumeration) like CWE-1318 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.