Chipmaker AMD now acknowledges vulnerabilities that are associated with the firmware managing the embedded security control processor.
"It’s important to note that all the issues raised in the research require administrative access to the system, a type of access that effectively grants the user unrestricted access to the system and the right to delete, create or modify any of the folders or files on the computer, as well as change any settings," says Mark Papermaster, SVP and CTO at AMD.
The company was also sure to point out that researchers discovered the vulnerabilities and essentially gave AMD no time to respond.
"On March 12, 2018, AMD received a communication from CTS Labs regarding research into security vulnerabilities involving some AMD products. Less than 24 hours later, the research firm went public with its findings."
The company has announced which vulnerabilities will be resolved by patching. See the full list here.
AMD says this is not related to the AMD “Zen” CPU architecture announced earlier this year.
