Skip to main content

Kinetis K8X Firmware

2 CVEs product

Monthly

CVE-2019-14239 MEDIUM POC This Month

On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls (FAC) (a software IP protection method for execute-only access) can be defeated by leveraging a load instruction. Rated medium severity (CVSS 6.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Kinetis Kv1X Firmware Kinetis Kv3X Firmware Kinetis K8X Firmware
NVD
CVSS 3.1
6.6
EPSS
0.4%
CVE-2019-14237 CRITICAL POC Act Now

On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls (FAC) (a software IP protection method for execute-only access) can be defeated by observing CPU registers and the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Kinetis Kv1X Firmware Kinetis Kv3X Firmware Kinetis K8X Firmware
NVD
CVSS 3.1
9.8
EPSS
2.9%
EPSS 0% CVSS 6.6
MEDIUM POC This Month

On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls (FAC) (a software IP protection method for execute-only access) can be defeated by leveraging a load instruction. Rated medium severity (CVSS 6.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Kinetis Kv1X Firmware Kinetis Kv3X Firmware +1
NVD
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

On NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices, Flash Access Controls (FAC) (a software IP protection method for execute-only access) can be defeated by observing CPU registers and the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Kinetis Kv1X Firmware Kinetis Kv3X Firmware +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy