Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Intel Updates NUC Firmware to Patch High Severity Bug
#1
Quote:Intel today released a firmware update for multiple NUC Kit models to patch a high-severity issue that could be exploited to achieve privilege escalation, cause a denial-of-service (DoS) condition, or information disclosure.
 
NUC Kits are not the only small-form-factor computers from Intel requiring this update. A Compute Card and a Compute Stick run with the same BIOS and are equally affected by the bug.

Tracked as CVE-2019-11140, the vulnerability has a severity score of 7.5 out of 10 and it is due to insufficient validation.
 
Exploitation is possible if the attacker has local access with permissions of a privileged user; this would not be much of a hurdle for a determined attacker, though.
 
The full list of products in Intel's advisory affected by CVE-2019-11140 includes the following models:
  • Intel NUC Kit NUC7i7DNx
  • Intel NUC Kit NUC7i5DNx
  • Intel NUC Kit NUC7i3DNx
  • Intel Compute Stick STK2MV64CC
  • Intel Compute Card CD1IV128MK

Read more here: https://www.bleepingcomputer.com/news/se...erity-bug/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
AWZ Screen Recorder
AWZ Screen Recorder ...zevish — 11:05
Website X5 Go 2024.1
Website X5 Go 2024.1...zevish — 09:32
Apple's rules to allow third-party app ...
Apple has announ...alison30 — 09:28
Intel: Microsoft AI PCs need a Copilot K...
Microsoft hopes th...harlan4096 — 08:55
Synchredible 8 Professional Edition v8.2...
          Synchredib...zevish — 08:54

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
There are no staff members currently online.

>