Buzz
Intel has resolved the vulnerability in the configuration of certain CPU models, allowing attackers to modify the behavior of SPI Flash memory within the chip - a critical component used in the boot process.
Alert: Intel SPI Flash vulnerability enables hackers to change or erase BIOS/UEFI firmware
According to Lenovo engineers, those implementing Intel's fixes noted that 'the system firmware configuration (SPI Flash) may allow attackers to block BIOS/UEFI updates or choose to delete or corrupt firmware parts,' for guidance on upgrading BIOS for the latest computer releases visit here whenever the manufacturer has new updates for their machine lines.
Lenovo engineers also noted: 'This could lead to various issues, but in rare cases could lead to arbitrary code execution.'
Intel deployed a patch for CVE-2017-5703 vulnerability on April 3. The chipset manufacturer stated that the following CPUs use unsafe opcodes, allowing internal attackers to exploit this security flaw:
The vulnerability is rated highest at 7.9 out of 10 on the CVSSv3 scale. Intel also reported they have identified an internal issue.
The company stated, in a security advisory: 'The issue stems from root causes. However, this issue is not visible externally.'
Intel has also released updates that computer vendors and motherboard manufacturers are expected to deploy as firmware bug fixes or BIOS/UEFI updates.
Accessing the BIOS allows us to intervene in the system's available settings, each device has different BIOS entry keys, depending on the machine line the manufacturer designs to help users operate with simplicity.
Although Microsoft's Surface Phone is still a long way from launch, there are many enthusiasts eagerly anticipating this phone day by day, especially when images of Surface Phone running Windows Core OS in the first leaked concept surfaced.
