Hardware TutorialHardware NewsLenovo has issued a patch in May, Phoenix UEFI firmware vulnerability disclosed: affecting hundreds of Intel PC CPU modelsLenovo has issued a patch in May, Phoenix UEFI firmware vulnerability disclosed: affecting hundreds of Intel PC CPU models
According to news from this site on June 21, Phoenix SecureCore UEFI firmware was exposed to a security vulnerability, affecting hundreds of Intel CPU devices. Lenovo has released a new firmware update to fix the vulnerability.
This site learned from reports that the vulnerability tracking number is CVE-2024-0762, known as "UEFICANHAZBUFFEROVERFLOW", which exists in the Trusted Platform Module (TPM) configuration in Phoenix UEFI firmware and is a buffer Area overflow vulnerability can be exploited to execute arbitrary code on vulnerable devices.
The vulnerability was discovered by Eclypsium, who discovered the vulnerability on Lenovo ThinkPad X1 Carbon 7th generation and X1 Yoga 4th generation devices, and later confirmed to Phoenix that it affects the SecureCore firmware of the following Intel CPUs:
Alder Lake
Coffee Lake
Comet Lake
Ice Lake
Jasper Lake
Kaby Lake
Meteor Lake
Raptor Lake
Rocket Lake
Tiger Lake
This vulnerability is possible due to the large number of Intel CPUs using this firmware Affecting hundreds of models from Lenovo, Dell, Acer and HP.
Eclypsium says the vulnerability they discovered is a buffer overflow in the System Management Mode (SMM) subsystem of the Phoenix SecureCore firmware, allowing an attacker to overwrite adjacent memory.
If the memory is overwritten with the correct data, it is possible for an attacker to escalate privileges and gain code execution capabilities in the firmware to install boot kit malware.
Phoenix issued a warning in April, and Lenovo released new firmware in May that fixed the vulnerability in more than 150 different models, but other manufacturers have not yet fully followed up on the fixes.
The above is the detailed content of Lenovo has issued a patch in May, Phoenix UEFI firmware vulnerability disclosed: affecting hundreds of Intel PC CPU models. For more information, please follow other related articles on the PHP Chinese website!
Turn a Long Webpage into a PDF with a Single iPhone ScreenshotMay 09, 2025 am 12:59 AMIn iOS and iPadOS, Apple includes a built-in screenshot feature that also provides you with the ability to capture an entire webpage on your iPhone or iPad that you can then save or share with someone as a PDF document.By converting full‑page screens
You will be able to watch the premiere of the next Star Wars TV show for free in Fortnite days before its Disney launchMay 08, 2025 am 09:54 AMThe first two episodes of Star Wars: Tales of the Underworld will premiere in FortniteThey will be free to watch in the game on May 2 ahead of a May 4 Disney releasePlayers can also claim a free Stormtrooper skin right nowThe first two episodes of t
Best fighting games 2025 - top fighters to push you to the limitMay 08, 2025 am 09:02 AMThe best fighting games are designed to put your skills to the test, whether that's in an online match or couch co-op. These games could offer anything from an eclectic roster of characters, a high skill ceiling to test the might of competitively min
Review: Kuxiu S2 Power Bank - Semi-Solid State Tech Promises Longer Life, Better SafetyMay 08, 2025 am 01:05 AMWhen it comes to the MagSafe power bank marketplace, it's largely a sea of sameness. Not this one. Kuxiu's S2 stands apart with its semi-solid state battery technology that promises enhanced safety and longevity, albeit at a steeper price than conven
Sony State of Play: when is the next 2025 PlayStation event?May 07, 2025 am 09:58 AMWe've finally gotten an announcement for the next State of Play event of the year, and it'll focus on an upcoming PS5 looter shooter. Better yet, there's not long to wait at all.Since the series of shows began in 2019, Sony has used the State of Play
Best PS5 games 2025 - top PlayStation 5 titles to play right nowMay 07, 2025 am 09:29 AMOnly the best PS5 games will give you top-tier experiences on Sony's current-gen console. Now that we're well into the lifecycle of the PlayStation 5, the library is more expansive than ever, offering an enormous range of games to get stuck into, no
How to Share Safari Tab Groups in macOSMay 07, 2025 am 03:01 AMIn macOS, Apple allows you to share Tab Groups in Safari with colleagues, friends, and family. Keep reading to learn how it's done.Introduced back in macOS Monterey, Tab Groups are designed to make organizing and preserving open tabs more manageable
Bookmark Multiple Tabs in Safari on iPhoneMay 01, 2025 am 01:02 AMIn Safari on iPhone, it's not unusual for the number of tabs you have open to quickly get out of hand. Here's how to temporarily clean things up without losing your tabs.If you have no use for all your open tabs, you can simply select one, then press
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Safe Exam Browser
Safe Exam Browser is a secure browser environment for taking online exams securely. This software turns any computer into a secure workstation. It controls access to any utility and prevents students from using unauthorized resources.
SublimeText3 Mac version
God-level code editing software (SublimeText3)
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
Notepad++7.3.1
Easy-to-use and free code editor
WebStorm Mac version
Useful JavaScript development tools
