CWE-1264— Hardware Logic with Insecure De-Synchronization between Control and Data Channels
The hardware logic for error handling and security checks can incorrectly forward data before the security check is complete.— MITRE CWE catalog
3 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-1264page 1 of 1
- CVE-2022-41588HIGHCVSS 7.5EG 7.52022-10-14
The home screen module has a vulnerability in service logic processing.Successful exploitation of this vulnerability may affect data integrity.
- CVE-2024-21823HIGHCVSS 7.5EG 6.42024-05-16
Hardware logic with insecure de-synchronization in Intel(R) DSA and Intel(R) IAA for some Intel(R) 4th or 5th generation Xeon(R) processors may allow an authorized user to potentially enable escalation of privilege local access
- CVE-2026-43713MEDIUMCVSS 6.5EG 6.52026-06-29
A permissions issue was addressed with additional restrictions. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Visiting a website may leak sensitive data.
Map vulnerabilities like CWE-1264 to your infrastructure
EchelonGraph correlates every CVE — across CWE-1264 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →