Dell, HP, & Lenovo System Found Using Outdated OpenSSL Cryptographic Library

29 November 2022

There is a cryptographic package built into the firmware development environment called CryptoPkg which, as a result, uses services from the OpenSSL project to provide cryptographic services within the firmware. Several versions of OpenSSL have been found to be part of the firmware images associated with Lenovo Thinkpad enterprise devices, and here below we have mentioned all three versions of OpenSSL:- 0.9.8zb 1.0.0a 1.0.2j There is one module in the firmware that relies on OpenSSL version 0.9.8zb which was released on August 4, 2014, known as InfineonTpmUpdateDxe.

Read full article on GBHackers

Date:

29 November 2022

Categorie(s):

NEWS

Tag(s):

Dell, Found, HP, Lenovo, Library

Vulnerability Exploitation on the Rise as Attacker Ditch Phishing23 April 2024
U.S. to Impose Visa Restrictions on 13 Individuals Involved in Commercial Spyware Operations23 April 2024
Can a VPN Be Hacked?23 April 2024
Why Is Data Backup And Recovery So Important?23 April 2024
Google Mandiant report finds surprising fall in time to detect cyber intrusions23 April 2024