A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
Weaknesses in this category can arise in multiple areas of hardware design or can apply to a wide cross-section of components.
A feature, API, or function does not perform according to its specification.
A product's firmware cannot be updated or patched, leaving weaknesses present with no means of repair and the product vulnerable to attack.
The product is to be designed with access restricted to certain information, but it does not sufficiently protect against an unauthorized actor's ability to access the...
The product is missing protections or implements insufficient protections against information leakage through physical channels such as power consumption, electromagne...
The product's data removal process does not completely delete all data and potentially sensitive information within hardware components.
The product does not have documentation that represents how it is designed.
Information stored in hardware may be recovered by an attacker with the capability to capture and analyze images of the integrated circuit using techniques such as sca...
This view organizes weaknesses around concepts that are frequently used or encountered in hardware design. Accordingly, this view can align closely with the perspectiv...