Apple has secretly fixed a security issue affecting some laptops that shipped with Intel chips that were mistakenly left configured into "manufacturing mode."
The OS maker fixed the issue in June, with the release of macOS High Sierra 10.13.5[1], and Security Update 2018-003 for macOS Sierra and El Capitan.
Maxim Goryachy and Mark Ermolov, two researchers from Positive Technologies, spotted the Intel chip misconfiguration --which also received a vulnerability ID of CVE-2018-4251.
The two were hunting bugs in Intel's Management Engine, an Intel proprietary technology used for remote management operations, which works as a separate chip running on top of actual Intel processor.
While digging around through the tens of ME configuration options, Goryachy and Ermolov spotted a feature that they believed could lead to problems, if left enabled by accident on Intel chips.
The configuration they eyed was named Manufacturing Mode, and it's an Intel ME option that desktop, server, laptop, or mobile OEMs can enable for Intel chips and use it for testing ME's remote management features. As the name implies, this configuration option should be enabled only on manufacturing lines to enable automated configuration and testing operations, but disabled before shipping the end product.
Goryachy and Ermolov say that devices where this Intel ME Manufacturing Mode has been left enabled can allow attackers to make changes to ME settings, and disable security features to enable other attack vectors.
"By exploiting CVE-2018-4251, an attacker could write old versions of Intel ME (such as versions containing vulnerability INTEL-SA-00086[2]) to memory without needing an SPI programmer or access to the HDA_SDO bridge--in other words, without physical access to the computer," said the two researchers in a report published today detailing some of these possible