Intel has announced a host of firmware bugs that could compromise endpoints such as datacenter servers, workstations, mobile devices and storage products.
Bugs, first reported RegisterBad actors can be allowed to leak information and increase their powers and are labeled “high intensity” by Intel.
A complete list of products affected by vulnerabilities can be found here HereThese include 10th generation Intel Core processors and Intel Core X-Series processors.
What should consumers do?
Intel recommends that users of affected processors update to the latest versions provided by their system manufacturer to resolve these issues.
Unfortunately, the above is not the only set of bugs that Intel can declare.
Potential security vulnerabilities in Intel processors have also been reported, allowing information to be leaked, but only as “low intensity” by Intel.
“A noticeable behavioral conflict on some Intel processors may allow an authorized user to disclose information through local access,” Intel said.
According to the hardware giant the bug could affect all Intel processor families.
Intel recommends that any affected product use the LFENCE reference “note notifications from another thread to the same shared memory address after loads”.
In today’s environment firewalls may not be self-sufficient, not only Intel, but also have hardware security vulnerabilities.
Academic researchers have demonstrated a successful attack strategy to overcome the protections provided by AMDs known Secure Encrypted Virtualization (SEV) technology.
Anyone with information about a security issue or vulnerability with Intel-branded product or technology to overcome further bugs, after encrypting sensitive information through it, can send it via e-mail to [email protected] PGP public key.
According to Intel’s own research there is a demand for more hardware security.
Based on a survey of 1,406 people across the United States, Europe, the Middle East, Africa and Latin America, 75% of respondents expressed interest in hardware-based approaches to security, while 40% expressed an interest in “security.” A silicon level “.
By Register