CVE-2019-0120

EPSS 0.12%
Published 17.05.2019 16:29:01
Last modified 21.11.2024 04:16:16
Source secure@intel.com
Teams watchlist Login
Open Login

Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Intel(R) Pentium(R) Processor N Series, Intel(R) Celeron(R) J Series, Intel(R) Celeron(R) N Series, Intel(R) Atom(R) Processor A Series, Intel(R) Atom(R) Processor E3900 Series, Intel(R) Pentium(R) Processor Silver Series may allow a privileged user to potentially enable denial of service via local access.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Intel ≫ J5005 Firmware Version-

Intel ≫ J5005 Version-

Intel ≫ J4205 Firmware Version-

Intel ≫ J4205 Version-

Intel ≫ J3710 Firmware Version-

Intel ≫ J3710 Version-

Intel ≫ N3540 Firmware Version-

Intel ≫ N3540 Version-

Intel ≫ N3530 Firmware Version-

Intel ≫ N3530 Version-

Intel ≫ N5000 Firmware Version-

Intel ≫ N5000 Version-

Intel ≫ Celeron J4005 Firmware Version-

Intel ≫ Celeron J4005 Version-

Intel ≫ Celeron N4100 Firmware Version-

Intel ≫ Celeron N4100 Version-

Intel ≫ Celeron N4000 Firmware Version-

Intel ≫ Celeron N4000 Version-

Intel ≫ Celeron J4105 Firmware Version-

Intel ≫ Celeron J4105 Version-

Intel ≫ Celeron J3355 Firmware Version-

Intel ≫ Celeron J3355 Version-

Intel ≫ Celeron N3350 Firmware Version-

Intel ≫ Celeron N3350 Version-

Intel ≫ Celeron J3455 Firmware Version-

Intel ≫ Celeron J3455 Version-

Intel ≫ Celeron N3450 Firmware Version-

Intel ≫ Celeron N3450 Version-

Intel ≫ Celeron J3060 Firmware Version-

Intel ≫ Celeron J3060 Version-

Intel ≫ Celeron J3160 Firmware Version-

Intel ≫ Celeron J3160 Version-

Intel ≫ Celeron N3000 Firmware Version-

Intel ≫ Celeron N3000 Version-

Intel ≫ Celeron N2940 Firmware Version-

Intel ≫ Celeron N2940 Version-

Intel ≫ Celeron N2840 Firmware Version-

Intel ≫ Celeron N2840 Version-

Intel ≫ Celeron N2930 Firmware Version-

Intel ≫ Celeron N2930 Version-

Intel ≫ Celeron N2830 Firmware Version-

Intel ≫ Celeron N2830 Version-

Intel ≫ Atom 330 Firmware Version-

Intel ≫ Atom 330 Version-

Intel ≫ Atom 230 Firmware Version-

Intel ≫ Atom 230 Version-

Intel ≫ Atom X5-e3930 Firmware Version-

Intel ≫ Atom X5-e3930 Version-

Intel ≫ Atom X5-e3940 Firmware Version-

Intel ≫ Atom X5-e3940 Version-

Intel ≫ Atom X7-e3950 Firmware Version-

Intel ≫ Atom X7-e3950 Version-

Intel ≫ Pentium Silver J5005 Firmware Version-

Intel ≫ Pentium Silver J5005 Version-

Intel ≫ Pentium Silver N5000 Firmware Version-

Intel ≫ Pentium Silver N5000 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.27

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.4	0.8	3.6	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:N/A:P

CWE-522 Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

http://www.securityfocus.com/bid/108485

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html

Vendor Advisory

https://support.f5.com/csp/article/K29002929

https://nvd.nist.gov/vuln/detail/CVE-2019-0120

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-0120

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-0120

EUVD