Intel yakagadzirisa maviri akakosha (CVE-2020-0594, CVE-2020-0595) mukushandiswa kweIntel Active Management Technology (AMT) uye Intel Standard Manageability (ISM), iyo inopa nzvimbo dzekutarisisa uye kutonga michina. Nyaya idzi dzakatemerwa padanho repamusoro rekuomarara (9.8 kunze kwegumi CVSS) nekuti kusavimbika kunobvumira asina kutenderwa network anorwisa kuti awane mukana kune kure kure kudzora hardware mabasa nekutumira akanyatsogadzirwa IPv10 mapaketi. Dambudziko rinongoonekwa chete kana AMT ichitsigira IPv6 kuwana, iyo yakadzimwa nekusarudzika. Kusagadzikana kwakagadziriswa mu firmware updates 6, 11.8.77, 11.12.77 uye 11.22.77.
Ngatiyeukei kuti yemazuva ano Intel chipsets ine yakaparadzana Management Engine microprocessor inoshanda yakazvimiririra yeCPU uye inoshanda sisitimu. Iyo Management Injini inoita mabasa anoda kupatsanurwa kubva kuOS, sekugadziriswa kwezvinhu zvakachengetedzwa (DRM), kuita TPM (Trusted Platform Module) modules uye yakaderera-level interfaces yekutarisa nekugadzirisa michina. Iyo AMT interface inobvumidza iwe kuti uwane simba manejimendi mabasa, kutarisa traffic, kushandura BIOS marongero, kuvandudza firmware, kupukuta disks, kure kure kubhodha OS itsva (kutevedzera USB drive kubva kwaunogona boot), console redirection (Serial Pamusoro peLAN uye KVM pamusoro. network) uye nezvimwe. Iyo yakapihwa interfaces inokwana kuita kurwiswa kunoshandiswa kana paine kuwana kwemuviri kune sisitimu, semuenzaniso, unogona kurodha Live system uye kuita shanduko kubva kwairi kuenda kune huru system.
Source: opennet.ru