September 12, 2022 By Alessandro Mascellino
The Binarly security research team has disclosed six high–severity firmware vulnerabilities the company found over the course of the year.
First discussed at the Black Hat 2022 conference, the flaws affect HP EliteBook devices and have Common Vulnerability Scoring System (CVSS) scores between 7.5 and 8.2.
“A firmware implant is the final goal for an attacker to maintain persistence," Binarly wrote in an advisory last Thursday. “The attacker can install the malicious implant on different levels of the firmware, either as a modified legitimate module or a standalone driver.”
