High severity Intel chip flaw left cars, medical and IoT devices vulnerable

The vulnerability can be exploited by attackers with physical access to the CPU to breach the security protocols and obtain sensitive information.

Positive Technologies security researchers have identified a vulnerability in Intel CPUs, allowing an attacker with physical access to a device to gain enhanced privileges on the system.

The vulnerability was discovered by Positive Technologies’ Mark Ermolov and Dmitry Sklyarov in collaboration with independent researcher Maxim Goryachy.

SEE: Hackers Targeting Apple’s M1 Chip with Mac Malware

On the other hand, Intel issued a security advisory classifying the vulnerability as a high-severity privilege-escalation flaw. On the CVSS vulnerability severity scale, it is rated 7.1 out of 10.

About the vulnerability

Positive Technologies published a report to explain the vulnerability discovered in the Pentium Celeron and Atom processors affecting Apollo Lake, Gemini Lake, and Gemini Lake Refresh platforms.

It is worth noting that the affected processors are used in mobile devices and embedded systems, and this means all devices from Ultrabooks to the Internet of Things are impacted.

Ermolov revealed that the vulnerability is a debugging functionality having excessive privileges. This functionality isn’t as appropriately protected as it should be. It is essential to secure debug mechanisms properly. Otherwise,

Read More: https://www.hackread.com/high-severity-intel-chip-flaw-cars-iot-devices-vulnerable/