June 23rd, 2024

Vulnerability in Popular PC and Server Firmware

Eclypsium found a critical vulnerability (CVE-2024-0762) in Intel Core processors' Phoenix SecureCore UEFI firmware, potentially enabling privilege escalation and persistent attacks. Lenovo issued BIOS updates, emphasizing the significance of supply chain security.

Read original articleLink Icon
Vulnerability in Popular PC and Server Firmware

Eclypsium has discovered a high-impact vulnerability (CVE-2024-0762) in the Phoenix SecureCore UEFI firmware used in various Intel Core processors. The flaw involves an unsafe variable in the Trusted Platform Module (TPM) configuration, potentially leading to a buffer overflow and malicious code execution. This vulnerability affects multiple Intel processor families and could impact a wide range of PC products using the Phoenix firmware. Exploiting this flaw could allow attackers to escalate privileges and execute code within the UEFI firmware, enabling persistent attacks. Lenovo has released BIOS updates, and Eclypsium customers can scan for vulnerable assets. Mitigation involves identifying affected devices and applying firmware updates. This incident underscores the importance of supply chain security in IT infrastructure and the need for continuous assessment and protection against firmware vulnerabilities.

Related

Simple ways to find exposed sensitive information

Simple ways to find exposed sensitive information

Various methods to find exposed sensitive information are discussed, including search engine dorking, Github searches, and PublicWWW for hardcoded API keys. Risks of misconfigured AWS S3 buckets are highlighted, stressing data confidentiality.

Hacking eInk Price Tags (2021)

Hacking eInk Price Tags (2021)

Hackers repurpose eInk electronic shelf labels (ESLs) into photo frames or status displays by customizing firmware. Detailed exploration of hacking challenges, including Marvell chip analysis, bootloader functions, memory storage, communication protocols, and debugging methods.

Arm64EC – Build and port apps for native performance on Arm

Arm64EC – Build and port apps for native performance on Arm

Arm64EC is a new ABI for Windows 11 on Arm devices, offering native performance benefits and compatibility with x64 code. Developers can enhance app performance by transitioning incrementally and rebuilding dependencies. Specific tools help identify Arm64EC binaries and guide the transition process for Win32 apps.

I found an 8 years old bug in Xorg

I found an 8 years old bug in Xorg

An 8-year-old Xorg bug related to epoll misuse was found by a picom developer. The bug caused windows to disappear during server lock, traced to CloseDownClient events. Despite limited impact, the developer seeks alternative window tree updates, emphasizing testing and debugging tools.

Easily upgradeable laptops are making a comeback and I'm here for it

Easily upgradeable laptops are making a comeback and I'm here for it

Easily upgradeable laptops like Lenovo's ThinkPad T14 Gen 5 and T16 Gen 3 models are designed for repairability, receiving a high score from iFixit. This shift aligns with sustainability and right-to-repair trends.

Link Icon 1 comments
By @compuguy - 5 months