NIST 800-53 r5 · Controls catalogue · Family PE
PE-4Access Control for Transmission
Control physical access to {{ insert: param, pe-04_odp.01 }} within organizational facilities using {{ insert: param, pe-04_odp.02 }}.
Last updated: 09 May 2026 03:25 UTC
Implementations targeting this control (0)
- No implementations targeting this control yet.
ATT&CK techniques this control mitigates (0)
- No ATT&CK techniques mapped to this control yet.
Weaknesses this control addresses (5)AI
CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.
| CWE | Name | CVEs | Why this control addresses it |
|---|---|---|---|
CWE-284 | Improper Access Control | 4,832 | Enforces physical-layer access control on transmission resources, reducing the ability to reach or manipulate them outside intended boundaries. |
CWE-668 | Exposure of Resource to Wrong Sphere | 779 | Prevents transmission resources from being exposed to an unauthorized physical sphere by limiting who can approach distribution lines. |
CWE-923 | Improper Restriction of Communication Channel to Intended Endpoints | 57 | Limits physical connectivity to transmission channels, supporting restriction of communication paths to only intended endpoints. |
CWE-300 | Channel Accessible by Non-Endpoint | 53 | Physically restricts transmission channels so they cannot be accessed or tapped by non-endpoint actors within facilities. |
CWE-1263 | Improper Physical Access Control | 13 | Directly implements physical access restrictions to transmission lines and media, preventing unauthorized physical tampering or interception. |
Top CVEs where this control is the strongest mitigation
| CVE | Risk | CVSS | EPSS | Match |
|---|---|---|---|---|
CVE-2024-42181 | 0.3 | 1.6 | 0.0010 | partial |