Masu bincike daga Kwarewar fasaha mai kyau sun gano sabon yanayin rauni (CVE-2019-0090) cewa ba da damar isa ga kwamfutar don cire mabuɗin tushen dandamali (maɓallin chipset), wanda aka yi amfani dashi azaman tushen amintacce wajen tantance abubuwan haɗin dandamali daban-daban, gami da TPM (Amintaccen Platform Module firmware) da UEFI.
Ularfafawa kuskure ne ya haifar da shi a cikin kayan aiki da firmware Intel CSME, que yana cikin boot ROM, wanda yake da mahimmanci tunda wannan kuskuren bazai iya gyara ta kowace hanya ba.
Rashin lafiyar CVE-2019-0090 yana nufin hadadden tsaro da injin gudanarwa (CSME) a kan yawancin Intel CPUs da aka saki a cikin shekaru biyar da suka gabata, tare da waɗannan maganganun jinsin na XNUMX banda.
Babbar matsala ce saboda tana ba da cakkun bayanan sirri ƙananan matakin lokacin da takalmin katako, a tsakanin sauran abubuwa. Shine abu na farko da kake gudana lokacin da ka bugo maɓallin wuta da tushen amintarwa ga duk abin da ke bi.
Saboda kasancewar taga yayin sake farawa na Intel CSME misali, lokacin fitowa daga yanayin bacci.
Ta hanyar magudi tare da DMA, za a iya rubuta bayanai zuwa Intel CSME ƙwaƙwalwar ajiya kuma ana iya canza teburin shafin ƙwaƙwalwa Intel CSME tuni an fara shi don katse aiwatarwar, cire mabuɗin daga dandamali kuma karɓar iko akan ƙarni na maɓallan ɓoye don matakan Intel CSME. Cikakkun bayanai game da raunin rashin lafiyar an shirya za'a saki daga baya.
Baya ga cire mabuɗin, Kuskuren kuma yana ba da damar aiwatar da lambar a matakin ƙoli daga Intel CSME (Converged Manageability and Security Engine).
Intel ta lura da matsalar kimanin shekara guda da ta gabata kuma a cikin Mayu 2019 An sake sabunta abubuwa tabbatar da cewa, kodayake ba za su iya canza lambar rauni a cikin ROM ba, kodayake an ba da rahoton cewa suna "ƙoƙari don toshe hanyoyin hanyoyin aiki a daidaitaccen ƙirar Intel CSME."
Dangane da Kwarewar Kwarewa, mafita kawai tana rufe vector na amfani. Sun yi imanin cewa akwai ƙarin hanyoyin kai hari kuma wasu basa buƙatar samun damar jiki.
"Za a iya samun hanyoyi da yawa don amfani da wannan yanayin rashin lafiyar a cikin ROM, ba duk suna buƙatar samun dama ta zahiri ba, wasu kawai damar da ke da alaƙa da ɓarnatarwar gida."
A cewar Mark Ermolov, Babban Hardware da Kwararren Kwararren Tsaro na OS a Ingancin Inganci, saboda wurin da yake, lahani yayi kama da Checkm8 boot ROM na amfani da na'urorin iOS wanda aka bayyana a watan Satumba kuma ana ɗaukarsa a matsayin gidan yari na dindindin
Daga cikin illolin da ka iya biyo baya don samun maɓallin tushen dandamali, An ambaci Intel CSME kayan aikin firmware, sadaukar da tsarin boye-boye kafofin watsa labarai dangane da Intel CSME, kazalika yiwuwar yin lalata da EPID (Ingantaccen ID na Sirri) don matsar da kwamfutarka zuwa wani don ƙeta kariya ta DRM.
A yayin da aka lalata daidaitattun samfuran CSME, Intel ta ba da ikon sabunta maɓallan da ke haɗe da su ta amfani da tsarin SVN (Lambar Shafin Tsaro).
Game da isa ga maɓallin tushen dandalin, wannan hanyar ba ta da tasiri tunda ana amfani da tushen mabuɗin dandamali don samar da maɓalli don ɓoye ɓoye rityimar Darajan rityimar Mutunci (ICVB), wanda kuɗin sa, a bi da bi, yana ba da damar gurɓata lambar kowane ɗayan ɗakunan firmware na Intel CSME.
Wannan na iya zama babbar matsalar da Intel za ta fuskanta, tun da an rage matsalolin da suka gabata kamar kallo ko narkewa, amma wannan babbar matsala ce saboda kuskuren yana cikin ROM kuma kamar yadda masu binciken suka ambata wannan kuskuren ba za a iya warware shi ta kowace hanya ba.
Kuma kodayake Intel na aiki don iya "yunƙurin toshe" hanyoyin da zai yiwu, duk abin da suka yi ba zai yiwu a magance gazawar ba.