CWE DATABASE
About
GET A DEMO
Backslash Vulnerability Database
Hardware Internal or Debug Modes Allow Override of Locks
Hardware Internal or Debug Modes Allow Override of Locks
CWE-1234
Short description
System configuration protection may be bypassed during debug mode.
Extended description
Best practices to prevent this CWE
Phase: Architecture and Design; Implementation; Testing
Security Lock bit protections should be reviewed for any bypass/override modes supported.
Any supported override modes either should be removed or protected using authenticated debug modes.
Security lock programming flow and lock properties should be tested in pre-silicon and post-silicon testing.
Effectiveness: High