Not that anyone is surprised or even cares but two more severe bugs have been found in the Intel Management Engine firmware. They allow remote execution with full privileges:
https://nvd.nist.gov/vuln/detail/CVE-2018-3627
https://nvd.nist.gov/vuln/detail/CVE-2018-3628
An article about these vulnerabilities on Tech Republic provides summaries and lists the affected processors.
(Score: 2) by bob_super on Tuesday July 31 2018, @04:25PM (1 child)
And the supremely goodest thing is remote management which does not disturb the computer's user by leaving tracks or requiring permissions.
(Score: 4, Insightful) by DannyB on Tuesday July 31 2018, @04:45PM
Even much more better is if the remote management can be done when the user has "turned off" the computer.
People today are educated enough to repeat what they are taught but not to question what they are taught.