Welcome to the SoC Vulnerability Database Page!
This effort aims to provide researchers and practitioners from academia and industry with a set of vulnerabilities in SoC (System on Chip) based on security objectives in hardware to perform various experimental analyses. In the future, we are planning to provide a variety of categories that are intended to simplify navigation, browsing, and mapping.
“Please cite the following paper if you use the SoC vulnerability database in your work.”
S. Tarek, H. A. Shaikh, S. R. Rajendran and F. Farahmandi, “Benchmarking of SoC-Level Hardware Vulnerabilities: A Complete Walkthrough,” 2023 IEEE Computer Society Annual Symposium on VLSI (ISVLSI), Foz do Iguacu, Brazil, 2023, pp. 1-6, doi: 10.1109/ISVLSI59464.2023.10238612.
Contributors: Shams Tarek, Sree Ranjani Rajendran , Mark Tehranipoor, Farimah Farahmandi
For any information, please send an email to shams.tarek@ufl.edu.
SoC Vulnerability #1
CWE-ID: – 1198
Hardware-based isolation and access control (e.g., identity, policy, locking control) of sensitive shared hardware resources such as registers and fuses, and information leakage.
SoC Vulnerability #2
CWE-ID: – 266
Hardware-based isolation and access control (e.g., identity, policy, locking control) of sensitive shared hardware resources such as registers and fuses, and information leakage.
SoC Vulnerability #3
CWE-ID: – 1198
Hardware-based isolation and access control (e.g., identity, policy, locking control) of sensitive shared hardware resources such as registers and fuses, and information leakage.
SoC Vulnerability #4
CWE-ID: – 1272
Hardware-based isolation and access control (e.g., identity, policy, locking control) of sensitive shared hardware resources such as registers and fuses, and information leakage.
SoC Vulnerability #5
CWE-ID: – 1262
Unauthorized page access request in the memory management unit (MMU)
SoC Vulnerability #6
CWE-ID: – 1262
Illegal Physical Memory Protection (PMP) unit access after mismatch