Strix
26.1K

CVE-2019-0120

UnknownEPSS 0.35%

Last modified

CVE-2019-0120 is a vulnerability of currently unknown severity. Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Intel(R) Pentium(R) Processor N Series, Intel(R) Celeron(R) J Series, Intel(R) Celeron(R) N Series, Intel(R) Atom(R) Processor A Series, Intel(R) Atom(R) Processor E3900 Series, Intel(R) Pentium(R) Processor Silver Series may allow a privileged user to potentially enable denial of service via local access.. EPSS estimates a 0.35% chance of exploitation in the next 30 days.

Description

Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Intel(R) Pentium(R) Processor N Series, Intel(R) Celeron(R) J Series, Intel(R) Celeron(R) N Series, Intel(R) Atom(R) Processor A Series, Intel(R) Atom(R) Processor E3900 Series, Intel(R) Pentium(R) Processor Silver Series may allow a privileged user to potentially enable denial of service via local access.

Metrics

EPSS Probability
0.35%

27.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IntelJ5005 FirmwareAll versions
IntelJ4205 FirmwareAll versions
IntelJ3710 FirmwareAll versions
IntelN3540 FirmwareAll versions
IntelN3530 FirmwareAll versions
IntelN5000 FirmwareAll versions
IntelCeleron J4005 FirmwareAll versions
IntelCeleron N4100 FirmwareAll versions
IntelCeleron N4000 FirmwareAll versions
IntelCeleron J4105 FirmwareAll versions
IntelCeleron J3355 FirmwareAll versions
IntelCeleron N3350 FirmwareAll versions
IntelCeleron J3455 FirmwareAll versions
IntelCeleron N3450 FirmwareAll versions
IntelCeleron J3060 FirmwareAll versions
IntelCeleron J3160 FirmwareAll versions
IntelCeleron N3000 FirmwareAll versions
IntelCeleron N2940 FirmwareAll versions
IntelCeleron N2840 FirmwareAll versions
IntelCeleron N2930 FirmwareAll versions
IntelCeleron N2830 FirmwareAll versions
IntelAtom 330 FirmwareAll versions
IntelAtom 230 FirmwareAll versions
IntelAtom X5-E3930 FirmwareAll versions
IntelAtom X5-E3940 FirmwareAll versions
IntelAtom X7-E3950 FirmwareAll versions
IntelPentium Silver J5005 FirmwareAll versions
IntelPentium Silver N5000 FirmwareAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-0120?
Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Intel(R) Pentium(R) Processor N Series, Intel(R) Celeron(R) J Series, Intel(R) Celeron(R) N Series, Intel(R) Atom(R) Processor A Series, Intel(R) Atom(R) Processor E3900 Series, Intel(R) Pentium(R) Processor Silver Series may allow a privileged user to potentially enable denial of service via local access.
How severe is CVE-2019-0120?
Severity scoring for CVE-2019-0120 is pending analysis. The EPSS model estimates a 0.35% probability of exploitation in the next 30 days.
How do I fix CVE-2019-0120?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-0120?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST