Security News > 2021 > November > Intel chip flaw could enable attacks on laptops, cars, medical devices (CVE-2021-0146)

Intel chip flaw could enable attacks on laptops, cars, medical devices (CVE-2021-0146)
2021-11-15 16:30

Researchers uncovered a vulnerability in Intel Processors that could affect laptops, cars and embedded systems.

The flaw enables testing or debugging modes on multiple Intel processor lines, which could allow an unauthorized user with physical access to obtain enhanced privileges on the system.

This problem has been discovered in the Pentium, Celeron and Atom processors of the Apollo Lake, Gemini Lake and Gemini Lake Refresh platforms, which are used in both mobile devices and embedded systems.

The threat affects a wide range of ultra-mobile netbooks and a significant base of Intel-based IoT systems, from home appliances and smart home systems to cars and medical equipment.

According to a study by Mordor Intelligence, Intel ranks fourth in the IoT chip market, while its Intel Atom E3900 series IoT processors, which also contain the CVE-2021-0146 vulnerability, are used by car manufacturers in more than 30 models, including, according to unofficial sources, in Tesla's Model 3.

To fix the discovered vulnerability, install the UEFI BIOS updates published by the end manufacturers of the respective electronic equipment.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/C5gOzzLcso4/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-11-17 CVE-2021-0146 Unspecified vulnerability in Intel products
Hardware allows activation of test or debug logic at runtime for some Intel(R) processors which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
low complexity
intel
6.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Intel 6314 31 755 708 45 1539