Qualcomm UEFI Flaws Enable Attacks on Microsoft, Lenovo, and Samsung Devices


Qualcomm Snapdragon chips have potentially serious UEFI firmware vulnerabilities that affect a large number of devices made by Microsoft, Lenovo, Samsung, and probably other manufacturers as well.

Firmware security company Binarly researchers found five connectivity and boot-related issues, and Qualcomm announced the availability of patches for those issues. Binarly’s founder and CEO, Alex Matrosov, revealed to SecurityWeek that the company examined the firmware for Lenovo Thinkpad X13s laptops using the Qualcomm Snapdragon system-on-a-chip and found a total of nine vulnerabilities (SoC).

Also Read: Leveraging Hardware RoT to Secure Firmware against Ambitious Threat Actors

The Arm architecture is used by the Snapdragon CPU, and according to Matrosov, this is the first time that UEFI firmware vulnerabilities relating to the Arm device ecosystem have been publicly disclosed.

Read More: Qualcomm UEFI Flaws Expose Microsoft, Lenovo, Samsung Devices to Attacks

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.