"Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability"

Phoenix Technologies' SecureCore UEFI firmware solution has a high-severity vulnerability that could affect hundreds of PC and server models using Intel processors. Researchers at Eclypsium discovered the vulnerability called "UEFIcanhazbufferoverflow," using an automated analysis system. A local attacker can escalate privileges and execute arbitrary code in UEFI firmware during runtime using the security hole. Eclypsium warned that the Black Lotus UEFI rootkit may exploit this vulnerability. UEFI firmware is some of the most valuable code on modern devices, so compromising it can give attackers full control and persistence. This article continues to discuss the potential exploitation and impact of the flaw in Phoenix SecureCore UEFI firmware.

SecurityWeek reports "Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability"

Submitted by grigby1

Submitted by Gregory Rigby on