The flaw lies in the security and management tool (CSME), which is part of the system boot control chip, firmware and most important encryption functions. This could allow an attacker to inject malicious code and control the device.
CSME's security functions allow the operating system and application to securely store files encrypted by locking the main chipset. If an attacker could access CSME by executing malicious code, they could gain access to the core parts of the operating system along with the application and potentially cause serious damage.
CSME's security functions allow the operating system and application to securely store files encrypted by locking the main chipset. If an attacker could access CSME by executing malicious code, they could gain access to the core parts of the operating system along with the application and potentially cause serious damage.