I-Intel iye yalungisa ezimbini ezibalulekileyo (CVE-2020-0594, CVE-2020-0595) ekuphunyezweni kwe-Intel Active Management Technology (AMT) kunye ne-Intel Standard Manageability (ISM), ebonelela ngee-interfaces zokubeka iliso kunye nokulawula izixhobo. Imiba ilinganiswe kwinqanaba eliphezulu lobunzima (i-9.8 kwi-10 CVSS) ngenxa yokuba ubuthathaka buvumela umhlaseli womnatha ongagunyaziswanga ukuba afumane ukufikelela kwimisebenzi yokulawula i-hardware ekude ngokuthumela iipakethi ze-IPv6 ezenziwe ngokukodwa. Ingxaki ibonakala kuphela xa i-AMT ixhasa ukufikelela kwe-IPv6, okuye kwacinywa ngokungagqibekanga. Ubuthathaka bulungiswe kuhlaziyo lwe-firmware 11.8.77, 11.12.77, 11.22.77 kunye ne-12.0.64.
Masikhumbule ukuba ii-chipsets ze-Intel zanamhlanje zixhotyiswe nge-Microprocessor ye-Engine Engine esebenza ngokuzimeleyo kwi-CPU kunye nenkqubo yokusebenza. I-Injini yoLawulo iqhuba imisebenzi efuna ukuhlukaniswa ne-OS, njengokucubungula umxholo okhuselweyo (DRM), ukuphunyezwa kweemodyuli ze-TPM (i-Trusted Platform Module) kunye ne-interfaces ephantsi yokubeka iliso kunye nokulawula izixhobo. I-interface ye-AMT ikuvumela ukuba ufikelele kwimisebenzi yolawulo lwamandla, ukubeka iliso kwi-traffic, ukutshintsha izicwangciso ze-BIOS, uhlaziyo lwe-firmware, ukusula iidiski, ukuqalela ukude i-OS entsha (ilinganisa i-USB drive apho ungayiqala khona), ukuqondisa kwakhona i-console (Serial Over LAN kunye ne-KVM ngaphezulu). inethiwekhi) kunye njl. I-interfaces ezibonelelweyo zanele ukwenza ukuhlaselwa okusetyenziswa xa kukho ukufikelela ngokomzimba kwinkqubo, umzekelo, unokulayisha i-Live System kwaye wenze utshintsho ukusuka kuyo ukuya kwinkqubo ephambili.
umthombo: opennet.ru