Cybersecurity firm Eclypsium has uncovered significant security vulnerabilities in the Phoenix SecureCore UEFI firmware used by various Intel CPU and motherboard vendors across different generations. These vulnerabilities, dubbed “UEFIcanhazbufferoverflow,” are due to an insecure call to the UEFI service “GetVariable,” which could lead to a stack buffer overflow and allow malicious code execution. This kind of exploit could potentially grant an attacker full system access, with severe consequences for affected devices.
The vulnerable firmware affects not only Intel products but also other UEFI BIOS vendors such as Lenovo, Insyde, and AMI. It is crucial for users to update their BIOS promptly to mitigate the risk posed by this exploit. However, users are advised to back up important files and the original BIOS before proceeding with the update. Since UEFI vulnerabilities pose a significant threat to system security, swift action is necessary to address the issue effectively.
Eclypsium’s discovery of the Phoenix vulnerability was made possible through its automated Eclypsium Automata binary analysis system, which leverages research data from the company’s own experts. This automated approach highlights the importance of advanced technologies like artificial intelligence and machine learning in identifying and addressing critical cybersecurity issues.
In conclusion, the “UEFIcanhazbufferoverflow” exploit underscores the ongoing challenges in securing firmware and BIOS systems against sophisticated cyber threats. The collaboration between cybersecurity experts and advanced technologies is essential in safeguarding digital infrastructure and protecting users from potential security breaches. Security best practices, such as timely software updates and data backups, remain crucial in mitigating risks and ensuring the resilience of IT systems against evolving threats.
Article Source
https://www.tomshardware.com/pc-components/cpus/firmware-flaw-affects-numerous-generations-of-intel-cpus-uefi-code-execution-vulnerability-found-for-intel-cpus-from-14th-gen-raptor-lake-to-6th-gen-skylake-cpus
