CWE-1276: Hardware Child Block Incorrectly Connected to Parent System

Signals between a hardware IP and the parent system design are incorrectly connected causing security risks.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

Individual hardware IP must communicate with the parent system in order for the product to function correctly and as intended. If implemented incorrectly, while not causing any apparent functional issues, may cause security issues. For example, if the IP should only be reset by a system-wide hard reset, but instead the reset input is connected to a software-triggered debug mode reset (which is also asserted during a hard reset), integrity of data inside the IP can be violated.

CWE-1276: Hardware Child Block Incorrectly Connected to Parent System

Overview

Common consequences

How it happens

When it is introduced

How to prevent it

Code examples

Frequently asked questions

What is CWE-1276?

How do you prevent CWE-1276?

What are the consequences of CWE-1276?

References

Stay ahead of CWE-1276

Overview

Common consequences

How it happens

When it is introduced

How to prevent it

Code examples

Related weaknesses

Parent

Frequently asked questions

What is CWE-1276?

How do you prevent CWE-1276?

What are the consequences of CWE-1276?

References

Stay ahead of CWE-1276