Intel and Lenovo servers impacted by 6-year-old BMC flaw
An almost 6-year-old vulnerability in the Lighttpd web server used in Baseboard Management Controllers has been overlooked by many device vendors, including Intel and Lenovo. [...]
Intel Corporation designs processors and platforms whose firmware, microcode, and hardware flaws can affect system security, isolation, and data protection.
Search across headline titles and summaries.
Background for this topic.
Intel Corporation is a semiconductor designer whose processors, chipsets, firmware, and platform components underpin many servers, PCs, and embedded systems. In security news, the tag usually concerns vulnerabilities or mitigations affecting this hardware and its supporting software, rather than “intel” meaning threat intelligence.
Security impact can arise below the operating-system boundary: speculative-execution flaws may expose data through side channels, while firmware or platform-management weaknesses can enable privilege escalation or persistence in some configurations. Intel security advisories, operating-system updates, BIOS or UEFI releases, and microcode updates (small processor-control patches) therefore form a coordinated remediation chain. Administrators should inventory affected processor generations and firmware versions, apply trusted updates where applicable, and assess performance or compatibility trade-offs. Researchers and defenders may also need to distinguish hardware limitations from software bugs when investigating suspected exploitation.
An almost 6-year-old vulnerability in the Lighttpd web server used in Baseboard Management Controllers has been overlooked by many device vendors, including Intel and Lenovo. [...]
Discover how Trend is strengthening its endpoint solutions to detect fileless attacks earlier. By leveraging Intel Threat Detection Technology, Trend enhances the scalability and resiliency of its solutions.
Go, go InSpectre Gadget Intel CPU cores remain vulnerable to Spectre data-leaking attacks, say academics at VU Amsterdam.…
Researchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors. [...]
Cybersecurity researchers have disclosed what they say is the "first native Spectre v2 exploit" against the Linux kernel on Intel systems that could be exploited to read sensitive data from the memory