Great write-up, easy to understand and follow. That's a massive fuckup! Very disappointing & surprised that there was NO bounty and NO follow-up. Would never ever report a vulnerability to Intel under these circumstances.
Yeah, my thoughts exactly. Do Intel's quoted guidelines mean exploits that expose credentials aren't eligible for a payout? Those are some of the most dangerous!
sunaookami|6 months ago
bewildebeest|6 months ago