Security researchers have discovered three vulnerabilities in several Intel CPUs that are now supposed to be closed by a BIOS update. This is a possibility to extend rights via local franchise escalation (LPE), which can be exploited. A new firmware should provide a remedy.
Ad: Opera is your personal browser with free VPN, messenger and crypto wallet – for smartphones and computers. Download Opera now!
Possible security vulnerabilities CVE-2021-0157 And CVE-2021-0158 It has a risk rating of 8.2 (“high”), while the third vulnerability CVE-2021-0146 With a 7.1 (“high”) it is rated a little lower. Intel already has more information in its security advisories CVE-2021-0157 and CVE-2021-0158 And CVE-2021-0146 sum up. As announced by the manufacturer, the corresponding BIOS updates should be distributed immediately.
The following CPU chain is affected by the LPE error:
- Intel Xeon E processor family, E3 v6 processor family, W . processor family
- 3rd Generation Intel Xeon Scalable Processors
- 11th generation Intel Core processors
- 10th Generation Intel Core processors
- 7th Generation Intel Core processors
- Intel Core X series processors.
- N series processor Intel Celeron
- Intel Pentium Silver Series Processors
- Desktop and Mobile
- Intel Pentium Processor G Series, N Series
- C-series Intel Celeron processor, N-series
- A series. Intel Atom processor
- Intel Atom E3900 Processor Series
- Intel Pentium Processor Silver Series / J&N Series und Refresh
- engraved
- N series Intel Pentium processor
- N series processor Intel Celeron
- Intel Atom E3900 Processor Series
The website was the first to point out security vulnerabilities Newwen. Users with a corresponding CPU should search for an updated BIOS version on the motherboard manufacturer’s support website.
“Subtly charming coffee scholar. General zombie junkie. Introvert. Alcohol nerd. Travel lover. Twitter specialist. Freelance student.”
More Stories
iX Workshop: Passwordless authentication using passkeys, FIDO, SSO, and more
Self-comparison against LCD and OLED
The audio reference celebrates in High End 2024