CVE-2019-14239

Name of the Vulnerable Software and Affected Versions NXP Kinetis KV1x, Kinetis KV3x, and Kinetis K8x devices (affected versions not specified)

Description The issue concerns the Flash Access Controls (FAC) method, which is a software IP protection technique for execute-only access. It can be defeated by using a load instruction within the execute-only region, allowing the exposure of protected code into a CPU register.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.