Hi all, I was not sure exactly where to post this but I found a convenient way to update the ME firmware for the Acer Swift 3 (SF-31452G - i7-7500U) such that as of 25/03/2024 the Intel CSME tool is indicating vulnerabilities are patched.
Acer stopped releasing bios/security updates a few years ago which was disappointing, the bios is also extremely locked down and basically impossible to re-flash without a programmer.
This was tested by me today and worked flawlessly and did not involve any coding or advanced knowledge at all. I am making this post in hopes that other users on the same platform can google this and secure their machines. The method is as follows:
-
Jump on the Lenovo site and look up “X280 (Type 20KF, 20KE) Laptop (ThinkPad)” Support (Link for convenience: laptops and netbooks :: thinkpad x series laptops :: thinkpad x280 type 20kf 20ke - Lenovo Support AU)
-
Download Management Engine Firmware 11.8.94.4494 (05 September 2023)
-
This should result in a file called n20rg24w.exe appearing in your downloads. Run this as admin and hey presto! You’re patched after restart.
I was surprised there was not some sort of lock preventing the update from running but it worked for me. Of course this is still very much use at your own risk, just because it worked for me doesn’t mean it’ll work for you. Also very grateful to Lenovo for unintentionally helping some Acer users lol
Apologies to admins if this is not in the right place, I am just putting it somewhere in hopes it helps a few googling around for solutions.