Security News > 2020 > March > Vulnerability in Intel Chipsets Allows Hackers to Obtain Protected Data
Most Intel chipsets released in the past five years are affected by a vulnerability that can be exploited to obtain encrypted data and compromise data protection technologies, Positive Technologies revealed on Thursday.
According to Positive Technologies, CVE-2019-0090 is an unfixable vulnerability that affects the Converged Security and Management Engine boot ROM on most Intel chipsets and system on chips, except for Ice Point chipsets.
"An early-stage vulnerability in ROM enables control over reading of the Chipset Key and generation of all other encryption keys. One of these keys is for the Integrity Control Value Blob. With this key, attackers can forge the code of any Intel CSME firmware module in a way that authenticity checks cannot detect. This is functionally equivalent to a breach of the private key for the Intel CSME firmware digital signature, but limited to a specific platform," Positive Technologies explained in a blog post.
Mark Ermolov, lead specialist of OS and hardware security at Positive Technologies, told SecurityWeek that once an attacker has obtained this chipset key, they can decrypt any data encrypted using Intel Platform Trust Technology.
"Standard Windows BitLocker hard drive encryption supports Intel PTT if there isn't a dedicated TPM chip. BitLocker is increasingly used in corporate Windows 10 machines to encrypt drives in order to prevent data theft or exposure. So any data that was encrypted using Intel PTT technology could be decrypted, such as bank account information, passwords and other log-in credentials, and any confidential files relating to intellectual property. Attackers can also write malware to run on Intel CSME with all consequences," Ermolov explained.
News URL
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-05-17 | CVE-2019-0090 | Unspecified vulnerability in Intel products Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. local intel | 4.4 |