IEI Security Advisory

IEI Security Advisory

Providing customers with safe and reliable products is at the core of our mission. We provide this platform for customers to obtain real-time information. Meanwhile, we will continue to identify and resolve security vulnerabilities to ensure system security and mitigate potential risks.

The recently identified security vulnerabilities are listed in the following table.

Date Vulnerabilities or Exposures Description Security Website Reference
2020/6/9 INTEL-SA-00366 A potential security vulnerability in the Intel® Innovation Engine Build and Signing Tool may allow escalation of privilege.  Intel is releasing software updates to mitigate this potential vulnerability. Click Here
2020/6/9 INTEL-SA-00322 Potential security vulnerabilities in BIOS firmware for some Intel® Processors may allow escalation of privilege and/or denial of service.  Intel is releasing firmware updates to mitigate these potential vulnerabilities. Click Here
2020/6/9 INTEL-SA-00320 A potential security vulnerability in some Intel® Processors may allow information disclosure.  Intel is releasing firmware updates to mitigate this potential vulnerability. Click Here
2020/6/9 INTEL-SA-00295 Potential security vulnerabilities in Intel® Converged Security and Manageability Engine (CSME), Intel® Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM) and Intel® Dynamic Application Loader (DAL) may allow escalation of privilege, denial of service or information disclosure.  Intel is releasing firmware and software updates to mitigate these potential vulnerabilities. Click Here
2020/4/14 INTEL-SA-00363 A potential security vulnerability in system firmware for some Intel® NUC may allow escalation of privilege. Intel is releasing a firmware update to mitigate this potential vulnerability. Click Here
2020/4/14 INTEL-SA-00359 A potential security vulnerability in the Intel® Binary Configuration Tool for Windows may allow escalation of privilege.  Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for the Intel® Binary Configuration Tool for Windows. Click Here
2020/4/14 INTEL-SA-00351 A potential security vulnerability in Intel® Modular Server MFS2600KI Compute Module may allow escalation of privilege or denial of service. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for Intel® Modular Server MFS2600KI Compute Module. Click Here
2020/4/14 INTEL-SA-00344 A potential security vulnerability in the Intel® Driver and Support Assistant may allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability. Click Here
2020/4/14 INTEL-SA-00338 Potential security vulnerabilities in some Intel® PROSet/Wireless WiFi products may allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Click Here
2020/4/14 INTEL-SA-00327 A potential security vulnerability in Intel® Data Migration Software may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for Intel® Data Migration Software. Click Here
2020/3/10 INTEL-SA-00354 A potential security vulnerability in Intel® Smart Sound Technology may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Click Here
2020/3/10 INTEL-SA-00352 A potential security vulnerability in BlueZ may allow escalation of privilege and denial of service. BlueZ is releasing software updates to mitigate this potential vulnerability. Click Here
2020/3/10 INTEL-SA-00349 A potential security vulnerability in Intel® MAX® 10 FPGA may allow information disclosure. Intel is releasing documentation updates to mitigate this potential vulnerability. Click Here
2020/3/10 INTEL-SA-00343 Potential security vulnerabilities in system firmware for some Intel® NUC may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Click Here
2020/3/10 INTEL-SA-00334 Potential security vulnerabilities in some Intel® Processors may allow information disclosure. Intel and others are releasing software updates to mitigate these potential vulnerabilities. Click Here
2020/3/10 INTEL-SA-00330 A potential security vulnerability in some Intel® Processors may allow information disclosure. Click Here
2020/3/10 INTEL-SA-00326 A potential security vulnerability in Intel® Optane™ DC Persistent Memory Module Management Software may allow escalation of privilege and denial of service. Intel is releasing software updates to mitigate this potential vulnerability. Click Here
2020/3/10 INTEL-SA-00319 Potential security vulnerabilities in the Intel® Field Programmable Gate Array (FPGA) Programmable Acceleration Card (PAC) N3000 may allow escalation of privilege or denial of service. Click Here
2020/3/10 INTEL-SA-00315 Potential security vulnerabilities in Intel® Graphics Drivers may allow escalation of privilege, denial of service and/or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Click Here
2020/3/10 AMD-TRRespass (CVE-2020-10255) AMD is aware of new research related to an industry-wide DRAM issue called TRRespass whereby researchers demonstrated a method that claims to bypass existing Targeted Row Refresh (TRR) mitigations. AMD microprocessor products include memory controllers designed to meet industry-standard DDR specifications. Susceptibility varies based on DRAM device, vendor, technology and system settings. Click Here
2020/2/17 INTEL-SA-00289 A potential security vulnerability in some Intel® Processors may allow escalation of privilege and/or information disclosure.  Intel has released firmware updates to system manufacturers to mitigate this potential vulnerability. Click Here
2020/2/17 INTEL-SA-00241 Potential security vulnerabilities in Intel® Converged Security and Manageability Engine (CSME), Intel® Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Active Management Technology (AMT), Intel® Platform Trust Technology (PTT) and Intel® Dynamic Application Loader (DAL) may allow escalation of privilege, denial of service or information disclosure. Click Here
2020/2/11 INTEL-SA-00307 A potential security vulnerability in CSME subsystem may allow escalation of privilege, denial of service, and information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Click Here
2019/6/17 ARM-Vulnerability of Speculative Processors to Cache Timing Side-Channel Mechanism Based on the recent research findings from Google on the potential new cache timing side-channels exploiting processor speculation, here is the latest information on possible Arm processors impacted and their potential mitigations. Click Here