Intel patches 9 vulnerabilities in their management platform by mrosenquist

View this thread on: hive.blog | peakd.com | ecency.com

cybersecurity · @mrosenquist · Sep 13 '20

$6.14

Intel patches 9 vulnerabilities in their management platform

<html>
<p><img src="https://i.postimg.cc/Fz3QD2g9/Processor.jpg"/></p>
<p>Intel has released patches for several security vulnerabilities in their Active Management Technology (AMT) and Intel Standard Manageability (ISM) platforms.  One of them was a critical flaw in AMT that allowed remote privilege escalation  <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8758">CVE-2020-8758</a></p>
<p>It is nice to see more Intel product vulnerabilities are being addressed, especially those that reside in embedded management functions for business class CPU products. </p>
<p>Compromising the hardware and firmware represent a serious threat to computing that can undermine all other security and monitoring controls that run on the system. Given the range of version numbers, I would guess these vulnerabilities have existed for years.</p>
<p>Properly investing in product security and standing by those products is crucial for trust. </p>
<p>Of note, those customers who have Intel systems with older versions of Intel AMT (3.x thru 10.x) are not supported by Intel any longer and weren’t assessed for these vulnerabilities. Intel’s product security website (<a href="https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html">https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html</a>) states they are not planning any patch release for those versions. Customers are on their own to address those potentially Critical level vulnerabilities.</p>
</html>

👍 pfunk, buildawhale, themarkymark, redes, fredrikaa, therealwolf, mrosenquist, recoveryinc, kamchore, smartsteem, stevescoins, enforcer48, bitshares101, payroll, onealfa, roomservice, gitplait, vannour, joebrochin, dying, bala41288, makerhacks, kgakakillerg, tombstone, ultimus, stemgeeks, upmyvote, fourfourfun, tykee, epicdice, commonlaw, movement19, steemworld, hiveonboard, stemcuration, pedir-museum, elkaos, abbenay, mapesa, munzir, frassman, aceh, creat, cisah, abh12345.stem, steemcultures, tonimontana, zorg67, limka, oakshieldholding, yggdrasil.laguna, stemd, laissez-faire, vxc.stem, jk6276

`author`	mrosenquist
`permlink`	intel-patches-9-vulnerabilities-in-their-management-platform
`category`	cybersecurity
`json_metadata`	{"tags":["cybersecurity","technology","security","vulnerability","hacking"],"image":["https://i.postimg.cc/Fz3QD2g9/Processor.jpg"],"links":["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8758","https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html"],"app":"hiveblog/0.1","format":"html"}
`created`	2020-09-13 05:48:21
`last_update`	2020-09-13 05:48:21
`depth`	0
`children`	3
`last_payout`	2020-09-20 05:48:21
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	3.404 HBD
`curator_payout_value`	2.736 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	1,522
`author_reputation`	178,369,333,781,642
`root_title`	"Intel patches 9 vulnerabilities in their management platform"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	99,599,400
`net_rshares`	23,387,656,122,029
`author_curate_reward`	""

properties (23)vote details (55)

voter	rshares	pct
tombstone	16,237,393,551	0.75%
pfunk	8,218,847,010,414	100%
onealfa	86,429,940,939	4.45%
bitshares101	97,883,331,916	25%
mrosenquist	399,015,110,513	100%
stevescoins	141,041,409,619	100%
ultimus	12,825,723,927	100%
vannour	67,401,934,772	50%
steemcultures	675,406,139	50%
redes	2,121,594,960,937	35%
steemworld	2,442,770,838	50%
creat	729,087,787	50%
mapesa	968,409,710	25%
zorg67	572,763,870	100%
cisah	719,710,987	50%
pedir-museum	1,535,283,741	50%
aceh	795,587,631	50%
munzir	824,500,404	50%
roomservice	81,280,011,815	1.87%
fredrikaa	1,034,096,453,617	100%
themarkymark	2,195,247,885,661	10%
tykee	5,757,616,551	50%
buildawhale	7,197,263,419,358	10%
therealwolf	712,222,911,648	2.5%
makerhacks	27,701,288,105	10%
smartsteem	143,094,218,732	2.5%
kamchore	151,101,885,561	100%
fourfourfun	7,059,317,931	25%
upmyvote	7,237,500,135	10%
bala41288	31,644,355,235	10%
joebrochin	43,156,951,334	30%
movement19	3,580,998,557	2.5%
frassman	795,970,210	5%
tonimontana	609,556,281	21.82%
kgakakillerg	23,746,425,449	10%
payroll	95,708,318,809	2%
enforcer48	122,023,695,046	15%
commonlaw	4,468,729,825	35%
jk6276	0	1%
oakshieldholding	403,836,455	100%
laissez-faire	107,827,312	100%
elkaos	1,307,496,255	30%
limka	451,125,239	100%
abbenay	1,051,045,746	5%
epicdice	5,552,258,368	0.75%
stemgeeks	8,168,953,333	50%
stemcuration	1,941,524,835	50%
abh12345.stem	685,809,300	100%
vxc.stem	0	21.82%
stemd	333,612,207	100%
yggdrasil.laguna	381,018,498	75%
gitplait	76,347,647,962	100%
hiveonboard	2,334,023,803	1.87%
recoveryinc	197,603,368,407	5%
dying	32,648,726,754	5%

@gitplait · Sep 13 '20

Upvoted by GITPLAIT!

We have a curation trial on Hive.vote. you can earn a passive income by delegating to @gitplait
We share 80 % of the curation rewards with the delegators.

To delegate, use the links or adjust 10HIVE, 20HIVE, 50HIVE, 100HIVE, 200HIVE, 500HIVE, 1,000HIVE, 10,000HIVE, 100,000HIVE

Join the Community and chat with us on Discord let’s solve problems & build together.

properties (22)

`author`	gitplait
`permlink`	qgm0r5
`category`	cybersecurity
`json_metadata`	{"users":["gitplait"],"app":"hiveblog/0.1"}
`created`	2020-09-13 18:30:42
`last_update`	2020-09-13 18:30:42
`depth`	1
`children`	0
`last_payout`	2020-09-20 18:30:42
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	387
`author_reputation`	911,220,543,569
`root_title`	"Intel patches 9 vulnerabilities in their management platform"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	99,608,145
`net_rshares`	0

@joebrochin · Sep 13 '20

Regrettably those people with non-supported versions most likely don't even know unless they work in the cyber profession. Then there are those still using Windows NT on connected servers, so doubt they will be overly concerned. :-(

Yes, I am glad to see Intel stepping up.

properties (22)

`author`	joebrochin
`permlink`	re-mrosenquist-qgl6q1
`category`	cybersecurity
`json_metadata`	{"tags":["cybersecurity"],"app":"peakd/2020.09.4"}
`created`	2020-09-13 07:42:03
`last_update`	2020-09-13 07:42:03
`depth`	1
`children`	0
`last_payout`	2020-09-20 07:42:03
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	275
`author_reputation`	26,155,480,658,381
`root_title`	"Intel patches 9 vulnerabilities in their management platform"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	99,600,328
`net_rshares`	0

@ultimus · Sep 13 '20

$0.04

Securely designed, supported, and trustworthy hardware is crucial for cybersecurity!

👍 mrosenquist, joebrochin

`author`	ultimus
`permlink`	qgl1n4
`category`	cybersecurity
`json_metadata`	{"app":"hiveblog/0.1"}
`created`	2020-09-13 05:52:18
`last_update`	2020-09-13 05:52:18
`depth`	1
`children`	0
`last_payout`	2020-09-20 05:52:18
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.034 HBD
`curator_payout_value`	0.003 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	84
`author_reputation`	6,664,676,750,516
`root_title`	"Intel patches 9 vulnerabilities in their management platform"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	99,599,439
`net_rshares`	407,739,895,467
`author_curate_reward`	""

properties (23)vote details (2)

voter	weight	wgt%	rshares	pct	time
mrosenquist	0 B		393,358,916,828	100%
joebrochin	0 B		14,380,978,639	10%