CWE · MITRE source
CWE-1262Improper Access Control for Register Interface
The product uses memory-mapped I/O registers that act as an interface to hardware functionality from software, but there is improper access control to those registers.
Software commonly accesses peripherals in a System-on-Chip (SoC) or other device through a memory-mapped register interface. Malicious software could tamper with any security-critical hardware data that is accessible directly or indirectly through the register interface, which could lead to a loss of confidentiality and integrity.
Last updated: 28 May 2026 20:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2022-23005 | 1.8 | 8.7 | 0.0034 | 2023-01-23 |
CVE-2015-8325 UPD | 1.6 | 7.8 | 0.0008 | 2016-05-01 |
CVE-2023-20599 | 1.6 | 7.9 | 0.0010 | 2025-06-10 |
CVE-2025-47385 | 1.6 | 7.8 | 0.0001 | 2026-03-02 |
CVE-2024-6354 | 1.4 | 7.2 | 0.0013 | 2024-06-26 |
CVE-2024-45556 | 1.3 | 6.5 | 0.0013 | 2025-04-07 |
CVE-2024-57492 | 1.1 | 5.5 | 0.0002 | 2025-03-10 |
CVE-2025-1882 | 1.0 | 5.0 | 0.0013 | 2025-03-03 |
CVE-2025-20788 | 0.9 | 4.4 | 0.0001 | 2025-12-02 |
CVE-2025-36194 | 0.6 | 2.8 | 0.0001 | 2026-02-02 |