[Tom's Hardware] Security Flaws Found in Intel Software, Data Center SSDs - Overclock.net - An Overclocking Community

Forum Jump: 

[Tom's Hardware] Security Flaws Found in Intel Software, Data Center SSDs

 
Thread Tools
post #1 of 4 (permalink) Old 07-11-2019, 11:34 AM - Thread Starter
sudo apt install sl
 
WannaBeOCer's Avatar
 
Join Date: Dec 2009
Posts: 5,145
Rep: 168 (Unique: 120)
[Tom's Hardware] Security Flaws Found in Intel Software, Data Center SSDs

Source: https://www.tomshardware.com/news/in...ssd,39845.html


Quote:
Two New Flaws Found in Intel's Software

The flaw in the processor diagnostic tool (CVE-2019-11133) is rated 8.2 out 10 on the CVSS 3.0 scale, making it a high-severity vulnerability. The flaw “may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access,” according to Intel’s latest security advisory. Versions of the tool that are older than 4.1.2.24 are affected.

The second vulnerability, found by Intel’s internal team, is a medium-severity vulnerability in Intel’s SSD DC S4500/S4600 series sold to data center customers. The flaw found in the SSD firmware versions older than SCV10150 obtained a 5.3 score on the CVSS 3.0 scale, so it was labeled medium-severity. The bug may allow an unprivileged user to enable privilege escalation via physical access.

As one of the flaws was uncovered by Intel itself and for the other the Eclypsium research coordinated with Intel for its disclosure, Intel was able to have ready the patches in time for the public announcement.

Silent
(20 items)
CPU
Core i9 9900K... CoffeeTime! @ 4.2Ghz w/ 1v
Motherboard
Maximus VIII Formula
GPU
Radeon VII @ 1900Mhz/1250Mhz w/ 1v
RAM
TeamGroup Xtreem 16GB 3866Mhz CL15
Hard Drive
Samsung 850 Evo 1TB
Hard Drive
Samsung 850 Evo 1TB
Hard Drive
Samsung 850 Evo 500GB
Power Supply
EVGA SuperNova 1200w P2
Cooling
EK Supremacy Full Copper Clean
Cooling
XSPC D5 Photon v2
Cooling
Black Ice Gen 2 GTX360 x2
Cooling
EK-Vector Radeon VII - Copper + Plexi
Case
Thermaltake Core X5 Tempered Glass Edition
Operating System
Clear Linux
Monitor
Acer XF270HUA
Keyboard
Cherry MX Board 6.0
Mouse
Logitech G600
Mouse
Alugraphics GamerArt
Audio
Definitive Technology Incline
Audio
SMSL M8A
▲ hide details ▲

Last edited by WannaBeOCer; 07-11-2019 at 12:38 PM.
WannaBeOCer is online now  
Sponsored Links
Advertisement
 
post #2 of 4 (permalink) Old 07-11-2019, 11:46 AM
Mice is bad civilization
 
Melan's Avatar
 
Join Date: Feb 2015
Location: 0,0
Posts: 3,206
Rep: 109 (Unique: 83)
They just can't catch a break, can they?
Melan is offline  
post #3 of 4 (permalink) Old 07-11-2019, 12:31 PM
New to Overclock.net
 
Join Date: Jun 2008
Location: Wilts, U.K.
Posts: 3,572
Rep: 454 (Unique: 386)
Quote: Originally Posted by Melan View Post
They just can't catch a break, can they?
Local access privilege escalation usually come and go without anyone noticing, Windows must average over 1 a month, CVE-2019-1132 and CVE-2019-0880 are two from this months patch Tuesday (and 16 critical/60 important updates is a sparse month) - Did you even know that MS fixed two this month?


Darren9 is offline  
Sponsored Links
Advertisement
 
post #4 of 4 (permalink) Old 07-11-2019, 12:59 PM
Mice is bad civilization
 
Melan's Avatar
 
Join Date: Feb 2015
Location: 0,0
Posts: 3,206
Rep: 109 (Unique: 83)
I was more referring to the second "Intel's Security Issues Continue" part.
Melan is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off