#IntelVulnerability

High-Risk Overflow Bug in Intel Chips Likely Impacts 100s of PC Models

by

June 20, 2024 at 05:10PM A critical vulnerability, CVE-2024-0762 “UEFIcanhazbufferoverflow,” affecting Intel processors has been detailed by Eclypsium researchers. The flaw in UEFI firmware may allow attackers to gain unauthorized access and execute malicious code. The widespread impact on various PC models running SecureCore firmware adds complexity to patching efforts, leaving organizations vulnerable until fixes … Read more

Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability

by

June 20, 2024 at 09:33AM A high-severity vulnerability, CVE-2024-0762 (dubbed UEFIcanhazbufferoverflow), was found in Phoenix Technologies’ SecureCore UEFI firmware, affecting multiple Intel processors. Eclypsium discovered the security hole, warning of potential escalation of privileges and code execution. Phoenix has addressed the issue, with device manufacturers deploying patches. Lenovo is also releasing fixes for affected computers. … Read more

Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs

by

March 12, 2024 at 01:57PM Multiple CVEs across various Microsoft products and services have been reported, with severity levels ranging from Important to Critical. Vulnerabilities including Denial of Service, Elevation of Privilege, and Remote Code Execution pose potential security risks. It is crucial for users to apply relevant patches and updates to mitigate these vulnerabilities. … Read more

Future Intel, AMD and Arm CPUs Vulnerable to New ‘SLAM’ Attack: Researchers

by

December 7, 2023 at 07:48AM Upcoming CPUs from Intel, AMD, and Arm may be susceptible to a new type of ‘SLAM’ attack despite planned security enhancements, researchers warn. Key Takeaways from Meeting: – Major CPU vendors, which include Intel, AMD, and Arm, are planning to integrate new security features into their future products. – There … Read more

New Intel CPU Vulnerability ‘Reptar’ Can Allow DoS Attacks, Privilege Escalation

by

November 15, 2023 at 05:09AM A vulnerability affecting certain Intel processors, tracked as Reptar and CVE-2023-23583, has been discovered. It could result in a crash, privilege escalation, and information disclosure. Intel has released microcode updates to address the issue, and users are advised to ensure their BIOS, system OS, and drivers are up to date. … Read more

New Reptar CPU flaw impacts Intel desktop and server systems

by

November 14, 2023 at 06:20PM Intel has fixed a high-severity CPU vulnerability that affects modern desktop, server, mobile, and embedded CPUs, including the latest microarchitectures. The flaw, known as CVE-2023-23583, allows attackers to escalate privileges, access sensitive information, or cause denial of service. Intel recommends updating affected processors with the latest microcode and provides mitigation … Read more