The developer builds a security-critical protection mechanism into the software, but the processor optimizes the execution of the program such that the mechanism is removed or modified.

What CVEs are caused by CWE-1037?

5 recorded CVEs are attributed to CWE-1037, including CVE-2024-45335, CVE-2024-37985, CVE-2025-48810.

How is CWE-1037 detected?

White Box: In theory this weakness can be detected through the use of white box testing techniques where specifically crafted test cases are used in conjunction with debuggers to verify the order of statements being executed.

What are the consequences of CWE-1037?

Exploiting CWE-1037 can lead to: Bypass Protection Mechanism.

Is CWE-1037 actively exploited?

5 recorded CVEs are caused by CWE-1037; none are currently in CISA's KEV catalog of actively exploited flaws.

CWE-1037: Processor Optimization Removal or Modification of Security-critical Code

CVE-2025-48809

Windows Secure Kernel Mode Information Disclosure Vulnerability

Medium · CVSS 5.5 · EPSS 78th

2025-07-08

CWE-1037: Processor Optimization Removal or Modification of Security-critical Code

CWE-1037: Processor Optimization Removal or Modification of Security-critical Code

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

White Box

Illustrative examples

Attack patterns

Frequently asked questions

What is CWE-1037?

What CVEs are caused by CWE-1037?

How is CWE-1037 detected?

What are the consequences of CWE-1037?

Is CWE-1037 actively exploited?

References

Stay ahead of CWE-1037

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

White Box

Illustrative examples

Related weaknesses

Parent

Peer

Attack patterns

Frequently asked questions

What is CWE-1037?

What CVEs are caused by CWE-1037?

How is CWE-1037 detected?

What are the consequences of CWE-1037?

Is CWE-1037 actively exploited?

References

Stay ahead of CWE-1037