CVE-2021-0146, arising from a debugging functionality with excessive privileges, allows attackers to read encrypted files.

From threatpost.com

A security vulnerability in Intel chips opens the door for encrypted file access and espionage, plus the ability to bypass copyright protection for digital content.

That’s according to Positive Technologies (PT), which found that the vulnerability (CVE-2021-0146) is a debugging functionality with excessive privileges, which is not protected as it should be.

The high-severity privilege-escalation issue is rated 7.1 out of 10 on the CVSS vulnerability-severity scale.

Read more…