A security vulnerability has just been discovered in AMD’s Ryzen processors and is rated as quite serious, codenamed Zenbleed, affecting all Zen 2 architecture chips.
According to Howtogeek, this means that the Ryzen 3000 and Ryzen 4000 series chips are both affected, along with some chips mainly on Ryzen 5000 and Ryzen 7020 series laptops. That’s the architecture still in use. widely, although AMD has released two successors Zen 3 and Zen 4, including the first Ryzen 3000 released in 2019, which is seen by many as AMD’s turning point in its competition with Intel. This means it gets used a lot
In addition, the Zen 2 chip is also used in gaming devices owned by millions of people, namely PlayStation 5, Xbox Series X, and Xbox Series S. In addition, all Steam Deck handhelds Both use Zen 2 CPU.
The attacker does not need direct access to the system itself as it can execute remotely via Javascript on the website. The vulnerability also doesn’t require any special system commands, privileges, or anything like that. And if the mining is done successfully, it can transfer data out of the CPU at 30 kb per second per core. Basically, it’s something very ominous.
AMD has released a small patch for the server EPYC 7002 family of CPUs, but consumer CPUs don’t really have a fix yet and it could be a few months before that patch arrives. Users are required to make sure to update their BIOS whenever they see an update that fixes this issue. During this time, they are advised to try to avoid unsafe websites
