See my previous post on CWE 1189: Improper Isolation of Shared Resources on a System-on-Chip (SoC).
In this video we discuss CWE 1191: On-Chip Debug and Test Interface With Improper Access Control. This one is a classic one that allows full control of a system, but on the flip side is straightforward to fix by disabling debug access. Josh breaks this CWE down with some additional examples.
For more content and deeper dives on these topic, check out the training at Advanced Security, and for consulting/penetration testing contact us at Cryptotronix.
For a full list of my available trainings, check out Advanced Security.
For consulting, contact us at Cryptotronix.