AMD announced a new Sinkclose vulnerability! The bad thing is, this vulnerability is available to millions of people around the world. Ryzen And EPYC may affect the processor. Sinkclose This vulnerability, called “CVE-2023-31315”, was recorded with the code. The vulnerability allows attackers to run malicious code in the “system management mode” (SMM), one of the most sensitive areas of the system. So how to take precautions?
This is a situation that can raise serious security concerns, because an attack code running on SMM can occur through malware such as bootkits that cannot be detected by antivirus software. So, what is Sinkclose?
Sinkclose is a vulnerability that occurs specifically in SMM, a special operating mode of processors called system management mode (SMM). SMM is designed to provide advanced power management and operating system independent functions and can only be accessed via system management interrupt (SMI).
This mode operates independently of traditional CPU functions and is critical to the overall security of the system. However, the Sinkclose vulnerability allows attackers to infiltrate the SMM mode and run malicious code. So, which processors are affected?
According to the security bulletin published by AMD, this vulnerability Ryzen 3000 series and first generation EPYC It affects many newer processors, especially processors. CPUs affected by this vulnerability have reached millions of users worldwide.
AMD has started rolling out new firmware and microcode updates to mitigate the effects of this vulnerability. However, no fixes are yet planned for Ryzen 3000 series desktop processors. This means a significant security risk for users using this series. So, what needs to be done for a solution?
AMD has released firmware and microcode updates for affected processors to mitigate the Sinkclose vulnerability. These updates will make it harder for attackers to access SMM mode and will attempt to prevent such attacks from occurring. AMD recommends users install these updates as soon as possible.
Making these updates, especially for EPYC processors used at the corporate level, is of critical importance to ensure the security of the systems. Users can ensure that they are protected against such vulnerabilities by regularly checking and updating their system management software and BIOS updates.
Moreover, AMD Ryzen 3000 There are similar risks in series processors. Especially for individual users, not being aware of such a vulnerability can leave their systems vulnerable. Therefore, it is of great importance that users do not neglect such updates and check their systems regularly.
So, what do you think about this security vulnerability? Are the measures taken by AMD sufficient? You can share your opinions in the comments section below.
Source link: https://shiftdelete.net/amd-sinkclose-guvenlik-acigi-ryzen-epyc
Web sitemizde ziyaretçilerimize daha iyi hizmet sağlayabilmek adına bazı çerezler kullanıyoruz. Web sitemizi kullanmaya devam ederseniz çerezleri kabul etmiş sayılırsınız.
Gizlilik Politikası