Description:

Intel has released security updates to address multiple vulnerabilities in the following products:

• Intel® Innovation Engine Build and Signing Tool
  • before version 1.0.859.
• 7th Generation Intel® Core™ processors
• 8th Generation Intel® Core™ processors
• 9th Generation Intel® Core™ processors
• 10th Generation Intel® Core™ processors
• Intel® SSD D3-S4510 Series
• Intel® SSD DC P4510 Series
• Intel® SSD DC P4610 Series
• Intel® SSD DC P4618 Series
• Intel® SSD DC P4511 Series
• Intel® SSD D5-P4326 Series
• Intel® SSD D5-P4420 Series
• Intel® SSD D5-P4320 Series
• Intel® CSME
  • 11.0 through 11.8.76
  • 11.10 through 11.12.76
  • 11.20 through 11.22.76
  • 12.0 through 12.0.63
  • 13.0 through 13.0.31
  • 14.0 through 14.0.32
  • 14.5.11.
• Intel® CSME
• Intel® AMT
• Intel® ISM
• Intel® DAL
• Intel® DAL Software
  • before versions 11.8.77
  • 11.12.77
  • 11.22.77
  • 12.0.64
  • 13.0.32
  • 14.0.33
  • 14.5.12
• Intel® Server Platform Services firmware
  • before versions:
    • SPS_E5_04.01.04.380.0
    • SPS_SoC-X_04.00.04.128.0
    • SPS_SoC-A_04.00.04.211.0
    • SPS_E3_04.01.04.109.0
    • SPS_E3_04.08.04.070.0
• Intel® TXE
  • 3.1.75
  • 4.0.25
• A list of impacted products can be found here.

Threats:

Attacker could exploit these vulnerabilities by doing the following:

• Escalation of privilege.
• Denial of service attack (DoS).
• Information Disclosure.

Best practice and Recommendations:

The CERT team encourages users to review Intel security advisory and apply the necessary updates:

• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00366.html
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00322.html
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00266.html