Skip to main content
  1. Home
  2. Computing
  3. News

Three generations of Intel processors are vulnerable to management engine bug

By

It’s rare that the kids, parents, and grandparents are affected by any one problem, but that’s exactly what’s happened with the case of the recently discovered Management Engine bug in Intel processors. The exploit, which makes it possible for the remote takeover of a system, affects not only the latest, eighth generation of Intel CPUs, but the seventh and sixth generations as well (even the best ones).

But this bug doesn’t stop there. On top of affecting almost all desktop and laptop systems sold with Intel hardware since 2015, Xeon processor lines like the E3-1200 v5 and V6 are affected too. As Ars Technica points out, this bug also hits the Atom range of C3000 processors, the E3900 series for Internet of Things devices, and the Apollo Lake Pentium and Celeron N and J series processors.

Recommended Videos

The problem in Intel’s Management Engine (ME) firmware actually enables four different potential exploits, with different versions of the ME affected by different ones. The most severe bug was discovered by researchers in the latest version of the firmware; it allows remote code execution, which potentially allows the takeover of an entire system without having access to the hardware.

Related

Other, somewhat less serious exploits, make it possible to cause system crashes or instability, and to access privileged information about the system.

Despite the widespread nature of the bug(s), there isn’t much consumers can do about it as of yet. Intel has released a detection tool to find out if your system is one of those vulnerable to its effects, with options for a command-line interface and a more consumer-friendly general user interface option. Both highlight what hardware and software your system is running and whether you may be vulnerable to this newly discovered flaw.

If you know or suspect you are affected, the best advice Intel is offering, for now, is to keep an eye on your motherboard or system manufacturer’s website and update your drivers and firmware as and when you can. Lenovo is expected to get an update out by November 23. Dell has confirmed that some 100 of its systems are affected by this bug, though it hasn’t given a time frame for when its firmware update will be released.

Editors’ Recommendations

Topics
Jon Martindale
Jon Martindale
Evergreen writer
Jon Martindale is a freelance evergreen writer and occasional section coordinator, covering how to guides, best-of lists, and…
AMD calls Intel’s Arrow Lake ‘horrible’
Fingers holding an Intel 285K.

Shots fired. Frank Azor, an AMD executive, just straight-up called Intel's Arrow Lake line of CPUs "horrible." Where did it all start? Why, with the ongoing shortage of AMD’s best gaming processors, of course. And surprisingly, AMD blames Intel for the fact that its X3D processors are hard to come by right now.

In a recent media roundtable reported by Tom's Hardware, AMD admitted that it never expected the demand for its CPUs to be that high. In fact, it expected it to be lower because it thought that Intel would be more competitive -- but since Arrow Lake turned out to be largely unimpressive, people turned to AMD for their next-gen CPUs even more so than before.

Read more
Intel quietly opens preorders on new Arrow Lake CPUs
Fingers holding an Intel 285K.

With CES 2025 right around the corner, most of us expect the big announcements to arrive in a week -- but some companies are already teasing new products. In Intel's case, the manufacturer plans to add more CPUs that might compete against some of the best processors. To that end, Intel has now announced preorders for new Arrow Lake CPUs, but most of us can't get our hands on them yet.

As spotted by VideoCardz, Intel China announced that preorders for the Core Ultra 200 non-K CPUs are opening today, with availability planned for January 13. These CPUs will presumably just be non-overclockable versions of existing Arrow Lake chips, such as the Core Ultra 9 285K. In its announcement, Intel teases "new architecture" and "better power consumption."

Read more
Intel’s promised Arrow Lake autopsy details up to 30% loss in performance
The Core Ultra 9 285K socketed into a motherboard.

Intel's Arrow Lake CPUs didn't make it on our list of the best processors when they released earlier this year. As you can read in our Core Ultra 9 285K review, Intel's latest desktop offering struggled to keep pace with last-gen options, particularly in games, and showed strange behavior in apps like Premiere Pro. Now, Intel says it has fixed the issues with its Arrow Lake range, which accounted for up to a 30% loss in real-world performance compared to Intel's in-house testing.

The company identified five issues with the performance of Arrow Lake, four of which are resolved now. The latest BIOS and Windows Updates (more details on those later in this story) will restore Arrow Lake processors to their expected level of performance, according to Intel, while a new firmware will offer additional performance improvements. That firmware is expected to release in January, pushing beyond the baseline level of performance Intel expected out of Arrow Lake.

Read more