Researchers Uncover UEFI Vulnerability Affecting Intel CPUs | allinfosecnews.com

July 3, 2024, 7 a.m. | Wajahat Raja

Security Boulevard securityboulevard.com

Cybersecurity researchers have recently uncovered a UEFI vulnerability in the Phoenix SecureCore UEFI firmware, which affects a variety of Intel Core desktop and mobile processors. This now-patched vulnerability, identified as CVE-2024-0762 with a CVSS score of 7.5, has been termed “UEFIcanhazbufferoverflow.” It involves a buffer overflow caused by an unsafe variable in the Trusted Platform […]

The post Researchers Uncover UEFI Vulnerability Affecting Intel CPUs appeared first on TuxCare.

The post Researchers Uncover UEFI Vulnerability Affecting Intel …

buffer buffer overflow code execution within uefi firmware core desktop cpus cve cve-2024 cve-2024-0762 cvss cvss score cybersecurity cybersecurity news desktop firmware intel intel core intel cpus malicious code execution mobile overflow phoenix phoenix securecore uefi firmware processors researchers score supply chain security uefi uefi firmware uefi vulnerability uncover uncovered variable vulnerability

More from securityboulevard.com / Security Boulevard

Randall Munroe’s XKCD ‘Routine Maintenance’ 3 hours ago | securityboulevard.com

amp humor maintenance randall munroe +5

‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought 3 hours ago | securityboulevard.com

analytics & intelligence api security appsec app sec & supply chain security +64

USENIX Security ’23 – Powering Privacy: On the Energy Demand and Feasibility of Anonymity Networks … 5 hours ago | securityboulevard.com

access anonymity authors channel +19

The Pros and Cons of Secure Access Service Edge (SASE) 12 hours ago | securityboulevard.com

access applications area cons +35

Extending the Reach and Capabilities of Digital Signing With Standards 12 hours ago | securityboulevard.com

capabilities cases challenges cybersecurity +25

Fickle Malware Leads to UAC Bypass and Data Exfiltration 13 hours ago | securityboulevard.com

account attack attack vectors bypass +37

Understanding API Key Verification 13 hours ago | securityboulevard.com

api api key verification api security application security +12

Smashing Silos With a Vulnerability Operations Center (VOC) 14 hours ago | securityboulevard.com

address attack attack surface can +21

The Runtime Secrets’ Security Gap 1 day, 4 hours ago | securityboulevard.com

discover encrypted gap infrastructure +10

Microsoft Active Directory Engineer - TS/SCI with Polygraph

@ General Dynamics Information Technology | USA VA Chantilly - 14700 Lee Rd (VAS100)

View on infosec-jobs.com

GSOC Analyst & Team Lead

@ Western Digital | Colorado Springs, CO, United States

View on infosec-jobs.com

FAIT Manager - IT Risk Assessment - Dublin

@ EY | Dublin 2, IE

View on infosec-jobs.com

FAIT Senior Manager - IT Risk Assessment - Dublin

@ EY | Dublin 2, IE

View on infosec-jobs.com

Engineer - Sailpoint IdentityNow I Remote, Bangalore

@ Optiv | Bengaluru

View on infosec-jobs.com

Security Sales Specialist

@ NTT DATA | Madrid, Spain

View on infosec-jobs.com