CAPEC-680: Exploitation of Improperly Controlled Registers

An adversary exploits missing or incorrectly configured access control within registers to read/write data that is not meant to be obtained or modified by a user.

High

Typical severity

Per MITRE

Medium

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Detailed

Abstraction

MITRE classification

Overview

Hardware systems often utilize trusted lock bits to prevent a set of registers from being written to or to restrict a register to only being written to once. Registers are also frequently used to store sensitive data leveraged in additional security operations, such as secure booting, authenticating code, device attestation, and more. However, the access control mechanisms meant to protect these registers may be fully missing or ineffective due to misconfiguration. If an adversary is able to discover improper access controls surrounding registers, it could result in the adversary obtaining sensitive data and/or modifying data that is meant to be immutable. This can ultimately result in processes like secure boot being circumvented or in protected configurations being modified.

CAPEC-680: Exploitation of Improperly Controlled Registers

Overview

What the attacker needs

Prerequisites

Skills required

Consequences

How to mitigate it

Examples

Frequently asked questions

What is CAPEC-680?

How do you prevent CAPEC-680?

What weaknesses does CAPEC-680 target?

How severe is CAPEC-680?

References

Defend against CAPEC-680

Overview

What the attacker needs

Prerequisites

Skills required

Consequences

How to mitigate it

Examples

Related weaknesses

Related attack patterns

Parent

Frequently asked questions

What is CAPEC-680?

How do you prevent CAPEC-680?

What weaknesses does CAPEC-680 target?

How severe is CAPEC-680?

References

Defend against CAPEC-680