I-Intel ilungise ezimbili ezibalulekile (CVE-2020-0594, CVE-2020-0595) ekusetshenzisweni kwe-Intel Active Management Technology (AMT) ne-Intel Standard Manageability (ISM), ehlinzeka ngezindawo zokuqapha nokuphatha okokusebenza. Izinkinga zilinganiselwe ngezinga eliphezulu lokuqina (9.8 kwezingu-10 CVSS) ngenxa yokuthi ubungozi buvumela umhlaseli wenethiwekhi ongagunyaziwe ukuthi athole ukufinyelela kwimisebenzi yokulawula izingxenyekazi zekhompuyutha ngokuthumela amaphakethe e-IPv6 aklanywe ngokukhethekile. Inkinga ivela kuphela uma i-AMT isekela ukufinyelela kwe-IPv6, okukhutshazwa ngokuzenzakalela. Ubungozi bulungisiwe kuzibuyekezo ze-firmware 11.8.77, 11.12.77, 11.22.77 kanye 12.0.64.
Masikhumbule ukuthi i-Intel chipsets yesimanje ifakwe i-microprocessor ehlukile ye-Management Engine esebenza ngokuzimela ngaphandle kwe-CPU nesistimu yokusebenza. Injini Yokuphatha yenza imisebenzi okudingeka ihlukaniswe ne-OS, njengokucubungula okuqukethwe okuvikelwe (i-DRM), ukuqaliswa kwamamojula we-TPM (I-Trusted Platform Module) kanye nezindawo zokusebenzelana ezisezingeni eliphansi zokuqapha nokuphatha amathuluzi. I-interface ye-AMT ikuvumela ukuthi ufinyelele imisebenzi yokuphatha amandla, ukuqapha kwethrafikhi, ukushintsha izilungiselelo ze-BIOS, ukuvuselela i-firmware, ukusula amadiski, ukubhutha ukude i-OS entsha (ukulingisa idrayivu ye-USB ongayiqalisa kuyo), ukuqondisa kabusha ikhonsoli (Serial Over LAN kanye ne-KVM ngaphezulu. inethiwekhi) nokunye. I-interface enikeziwe yanele ukwenza ukuhlasela okusetshenziswa uma kukhona ukufinyelela ngokomzimba ohlelweni, isibonelo, ungalayisha isistimu ebukhoma futhi wenze izinguquko ukusuka kuyo ukuya ohlelweni oluyinhloko.
Source: opennet.ru