CWE-1253

Incorrect Selection of Fuse Values

Base

Draft

Description

The logic level used to set a system to a secure state relies on a fuse being unblown.

{"xhtml:p":["Fuses are often used to store secret data, including security configuration data. When not blown, a fuse is considered to store a logic 0, and, when blown, it indicates a logic 1. Fuses are generally considered to be one-directional, i.e., once blown to logic 1, it cannot be reset to logic 0."]}

Parent Weaknesses (ChildOf)

CWE-693: Protection Mechanism Failure...

Common Consequences

Scope

Access Control

Authorization

Impact

Bypass Protection Mechanism, Gain Privileges or Assume Identity

Scope

Availability

Impact

DoS: Crash, Exit, or Restart

Scope

Confidentiality

Impact

Read Memory

Scope

Integrity

Impact

Modify Memory, Execute Unauthorized Code or Commands

Potential Mitigations

Architecture and Design

Logic should be designed in a way that blown fuses do not put the product into an insecure state that can be leveraged by an attacker.

Applicable Platforms

Not Language-Specific

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CWE-1253

Incorrect Selection of Fuse Values

Description

Relationships

Common Consequences

Potential Mitigations

Applicable Platforms