A vulnerability (CVE-2024-0762) in the Phoenix SecureCore UEFI, which runs on various Intel processors, could be exploited locally to escalate privileges and run arbitrary code within the firmware during runtime. “This type of low-level exploitation is typical of firmware backdoors (e.g., BlackLotus) that are increasingly observed in the wild,” Eclypsium researchers noted. “Such implants give attackers ongoing persistence within a device and often, the ability to evade higher-level security measures running in the operating system … More
The post Intel-powered computers affected by serious firmware flaw (CVE-2024-0762) appeared first on Help Net Security.