Hi, bit of a noob question here but I’ve been reading the forum and I might be wrong but I think you kind folk might be able to help me.
My laptop OEM hasn’t provided ME firmware updates for the vunerabilities found in 2017 onwards so I can’t patch for vunerabilities such as
https://www.intel.com/content/www/us/en/…l-sa-00086.html
Or later ones.
Would I be able to do this with a generic firmware instead of a non existent patch from my lazy OEM?
If anyone could point me in the right direction I would appreciate it.
@capitanos - read the update rules in section B here - Intel Management Engine: Drivers, Firmware & System Tools
Use ME FW Update tool, from the package in section C that matches your main FW version number.
You need to download a package from this repo thread, and find the latest one that has UPD in the name for your ME Major version
Intel Engine: Firmware Repositories
Flash using this command fwupdlcl -f mefilename.bin
You can drop your current BIOS onto ME Analyzer tool and get a more complete ME firmware type/info, to better help you choose which file from the repo package to use too, then before using drop the UPD file on there as well to make sure it’s a match
https://github.com/platomav/MEAnalyzer
Thanks I’ll give that a go.