CVE-2019-0120

Home/CVE/Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Inte

CVE

Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Inte

Insufficient key protection vulnerability in silicon reference firmware for Intel(R) Pentium(R) Processor J Series, Intel(R) Pentium(R) Processor N Series, Intel(R) Celeron(R) J Series, Intel(R) Celeron(R) N Series, Intel(R) Atom(R) Processor A Series, Intel(R) Atom(R) Processor E3900 Series, Intel(R) Pentium(R) Processor Silver Series may allow a privileged user to potentially enable denial of service via local access.

MEDIUM · CVSS 4.4 EPSS 0.00044

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-522Insufficiently Protected Credentials

▤

Affected Products & Versions

intel j5005 firmwareall versions
intel j4205 firmwareall versions
intel j3710 firmwareall versions
intel n3540 firmwareall versions
intel n3530 firmwareall versions
intel n5000 firmwareall versions
intel celeron j4005 firmwareall versions
intel celeron n4100 firmwareall versions
Show all 28 affected productsintel celeron n4000 firmwareall versions
intel celeron j4105 firmwareall versions
intel celeron j3355 firmwareall versions
intel celeron n3350 firmwareall versions
intel celeron j3455 firmwareall versions
intel celeron n3450 firmwareall versions
intel celeron j3060 firmwareall versions
intel celeron j3160 firmwareall versions
intel celeron n3000 firmwareall versions
intel celeron n2940 firmwareall versions
intel celeron n2840 firmwareall versions
intel celeron n2930 firmwareall versions
intel celeron n2830 firmwareall versions
intel atom 330 firmwareall versions
intel atom 230 firmwareall versions
intel atom x5-e3930 firmwareall versions
intel atom x5-e3940 firmwareall versions
intel atom x7-e3950 firmwareall versions
intel pentium silver j5005 firmwareall versions
intel pentium silver n5000 firmwareall versions

▣

Scoring & Timeline

4.4

MEDIUM · CVSS v3.0 · secure@intel.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD17 May 2019 · 04:29 PM

CVSS VectorCVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

http://www.securityfocus.com/bid/108485

https://support.f5.com/csp/article/K29002929

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.htmlVendor Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin