CWE-1037
Processor Optimization Removal or Modification of Security-critical Code
Common consequences1
- IntegrityBypass Protection Mechanism
A successful exploitation of this weakness will change the order of an application's execution and will likely be used to bypass specific protection mechanisms. This bypass can be exploited further to potentially read data that should otherwise be unaccessible.
Relationships1
- ChildOfCWE-1038
CVEs referencing this CWE5
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2024-37985 | Windows Kernel Information Disclosure Vulnerability | MEDIUM5.6 | 0.66%p47 | 2026-02-10 | |
| CVE-2025-48810 | Processor optimization removal or modification of security-critical code in Windows Secure Kernel Mode allows an authorized attacker to disclose information locally. | MEDIUM5.5 | 0.45%p35 | 2026-02-13 | |
| CVE-2025-48809 | Processor optimization removal or modification of security-critical code in Windows Kernel allows an authorized attacker to disclose information locally. | MEDIUM5.5 | 0.43%p34 | 2026-02-13 | |
| CVE-2025-26636 | Processor optimization removal or modification of security-critical code in Windows Kernel allows an authorized attacker to disclose information locally. | MEDIUM5.5 | 0.41%p33 | 2026-02-13 | |
| CVE-2024-45335 | Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection. | MEDIUM5.5 | 0.17%p7 | 2025-03-13 |