topic Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera in Embedded Intel® Core™ Processors

Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnerabili

NC7 — Tue, 11 Jun 2024 14:52:39 GMT

I am being alerted to a vulnerability and have been unable to find a resolution with an updated driver. Does anyone know where I can obtain the latest driver to fix this vulnerability?

My laptop is an HP Spectre X360 - 15t-bl100 running Windows 10

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

CarlosAM_INTEL — Tue, 11 Jun 2024 17:05:40 GMT

Hello, @NC7:

Thank you for contacting Intel Embedded Community.

The information that may help you on the way that the cited vulnerability is handled by Intel and their suggestions on the following website:

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00230.html

Best regards,

@CarlosAM_INTEL.

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

NC7 — Tue, 11 Jun 2024 15:09:30 GMT

Thanks @CarlosAM_INTEL

I reviewed this previously and do not see any available versions that would correct the issue for me. Can you direct me to an version newer than Intel® Dynamic Platform and Thermal Framework v8.3.10208.5643? I cannot seem to locate any.

Thanks for your help!

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

CarlosAM_INTEL — Tue, 11 Jun 2024 17:04:18 GMT

Hello, @NC7:

Thanks for your update.

We have received your questions, but we want to address the following consultation:

What is the part number of the Intel processor related to your request?

We are waiting for your reply.

Best regards,

@CarlosAM_INTEL.

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

NC7 — Tue, 11 Jun 2024 16:12:25 GMT

@CarlosAM_INTEL

It is an Intel provided processor

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

CarlosAM_INTEL — Tue, 11 Jun 2024 17:06:07 GMT

Hello, @NC7:

Thanks for your reply.

Reviewing your first communication, this forum is related to a third-party device.

In your last communication, the affected device has an Intel® Core™ i7-8550U Processor, which is not an Intel Embedded device, as you may confirm in the third row of the Supplemental Information section of the following website:

https://ark.intel.com/content/www/us/en/ark/products/122589/intel-core-i7-8550u-processor-8m-cache-up-to-4-00-ghz.html

Based on these and reviewing the document stated in our first communication, specifically the information stated in the recommendation section, you need to contact the manufacturer of the third-party device because Intel can only provide generic drivers, and the proper ones should be provided by the manufacturer of the third-party device. You can contact them, as a reference, using the following website:

https://support.hp.com/us-en/product/details/hp-spectre-15-bl100-x360-convertible-pc/model/16895886

Best regards,

@CarlosAM_INTEL.

Re: Intel Dynamic Platform and Thermal Framework CVE-2019-0134 Incorrect Default Permissions Vulnera

NC7 — Tue, 11 Jun 2024 16:36:39 GMT

Ok, thanks