A new bug discovered in certain Intel processors could allow a hacker to alter or eliminate the BIOS / UEFI firmware. Do you want to know which ones are affected?
The security problems in the world of the internet are the order of the day lately. Unfortunately, the constant attacks make users increasingly insecure and constantly alert.
Undoubtedly one of the companies that are giving more talk in recent months is being Intel. A matter of a month ago we saw how the giant finally launched a series of processors with patches for the famous Specter and Meltdown, vulnerabilities that affected notable brands.
However, Intel is again on everyone’s lips as it has just known a new vulnerability that affects the BIOS and UEFI of the motherboards of its most current processors.
How does this new vulnerability work in Intel processors?
This vulnerability allows the local attacker to alter SPI Flash behavior, this being a mandatory component that is used during the boot process. This can lead to a denial of service. Lenovo has explained on its official website how an attacker could act in case he made use of this vulnerability.
“The configuration of the system firmware device (SPI flash) could allow an attacker to block BIOS / UEFI updates, or selectively delete or damage parts of the firmware.”
The result of this would result in a malfunction, even in certain circumstances, resulting in the execution of arbitrary code. Lenovo what it proposes before this problem is that all those users are downloaded the correct updates for the BIOS and UEFI, offered by the manufacturers. In this way, all affected users can protect themselves.
What have Intel products been affected?
Intel has officially published the description of this vulnerability which they have identified with the code CVE-2017-5703. In the following list, you will find the affected processors, most of which are the most used and valued in the market.
Affected processors
- Intel Atom C Series Processor
- Intel Xeon D processor family
- Intel Xeon Phi x200 processor
- Intel Xeon processor family E7 v2
- Intel Xeon processor family E7 v3
- Intel Xeon processor family E7 v4
- Intel Xeon processor family E3 v5
- Intel Xeon processor family E3 v6
- Scalable Intel Xeon processors
- Processor Intel Atom x7-E39XX Processor
- Processor Intel Celeron J3455, J3355, N3350 and N3450
- Intel Pentium J4205 and N4200 processor
- Intel Atom processor x5-E8000
- Intel Celeron J3XXX processor
- Intel Pentium J3710 and N37XX processor
- Intel Atom processor x7-Z8XXX, processor family x5-8XXX
- Processor Intel Pentium and Celeron N3520, N2920 and N28XX
- Intel Core fifth generation processors
- 6th generation Intel Core processors
- 7th generation Intel Core processors
- 8th generation Intel Core processors
Without a doubt a new blow for the company, which has had to face different problems in recent months?