Not that anyone is surprised or even cares but two more severe bugs have been found in the Intel Management Engine firmware. They allow remote execution with full privileges:
https://nvd.nist.gov/vuln/detail/CVE-2018-3627
https://nvd.nist.gov/vuln/detail/CVE-2018-3628
An article about these vulnerabilities on Tech Republic provides summaries and lists the affected processors.
(Score: 4, Insightful) by requerdanos on Tuesday July 31 2018, @02:49PM
I agree, that's a positive* step, but in my (possibly paranoid) opinion, an option to "turn off" BIOS support for your computer's "built-in secret full-privelige rootkit controlled by not-you" still isn't very reassuring, because it doesn't make you magically have no "secret full-privelege rootkit controlled by not-you".
-------
* Well, maybe not positive; maybe "ever so slightly less negative."