Security News > 2018 > July > Intel Xeon workhorses boot evil maids out of the hotel: USB-based spying thwarted by fix

Intel Xeon workhorses boot evil maids out of the hotel: USB-based spying thwarted by fix

2018-07-25 06:32

The story behind the quietly patched CVE-2018-3652 Ex-Intel security dragons have breathed fresh fire into the old maxim: if someone has physical access to your machine, you're pwned.…

News URL

http://go.theregister.com/feed/www.theregister.co.uk/2018/07/25/intel_xeon_usb_debugging/

#boot #hotel #intel #USB #xeon #CVE-2018-3652

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-10	CVE-2018-3652	Information Exposure vulnerability in Intel products Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets via debug interfaces. local low complexity intel CWE-200	4.6

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Intel		6799	271	744	378	28	1421

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.