VYPR

CWE-1282

Assumed-Immutable Data is Stored in Writable Memory

BaseIncomplete

Description

Immutable data, such as a first-stage bootloader, device identifiers, and "write-once" configuration settings are stored in writable memory that can be re-programmed or updated in the field.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-458 · CAPEC-679

CVEs mapped to this weakness (3)

  • CVE-2019-25358HigFeb 18, 2026
    risk 0.49cvss 7.5epss 0.00

    FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the FileOptimizer32.ini configuration file. Attackers can overwrite the TempDirectory parameter with a 5000-character buffer to cause the…

  • CVE-2019-25590MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    Axessh 4.2 contains a denial of service vulnerability in the logging configuration that allows local attackers to crash the application by supplying an excessively long string in the log file name field. Attackers can enable session logging, paste a buffer of 500 or more…

  • CVE-2018-25229MedMar 30, 2026
    risk 0.36cvss 5.5epss 0.00

    BulletProof FTP Server 2019.0.0.50 contains a denial of service vulnerability in the SMTP configuration interface that allows local attackers to crash the application by supplying an oversized string. Attackers can input a buffer of 257 'A' characters in the SMTP Server field…