Security News > 2020 > June > Critical Intel Flaws Fixed in Active Management Technology

Critical Intel Flaws Fixed in Active Management Technology
2020-06-10 18:37

The critical flaws exist in Intel's Active Management Technology, which is used for remote out-of-band management of personal computers.

The two critical flaws exist in the IPv6 subsystem of AMT. The flaws could potentially enable an unauthenticated user to gain elevated privileges via network access.

The flaw stems from insufficient control flow management in firmware for some Intel Data Center SSDs. The flaw "May allow a privileged user to potentially enable information disclosure via local access," according to Intel.

Intel also fixed flaws in the BIOS firmware for some Intel Processors, which may enable escalation of privilege or denial of service.

Of note, Intel did not release any fixes for flaws in May. In April, Intel patched high-severity flaws in its Next Unit Computing mini PC firmware, and in its Modular Server MFS2600KISPP Compute Module.


News URL

https://threatpost.com/critical-intel-flaws-fixed-in-active-management-technology/156458/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Intel 6314 31 755 708 45 1539