Intel released fixes to address multiple vulnerabilities in its products, including a series of high-severity vulnerabilities in the BIOS for some processor models.

According to an Intel report, 9 recorded high-severity and 2 moderate severity issues affect Intel Xeon, Pentium Silver, Rocket Lake Xeon, Core, and Core X Series processors. BIOS security vulnerabilities allow escalation of privileges, the most dangerous of which are CVE-2021-0154, CVE-2021-0153, CVE-2021-33123, and CVE-2021-0190 with a CVSS score of 8.2.

Intel also published descriptions of eight vulnerabilities in the Optane SSD and Intel Optane SSD Data Center (DC) products, including three that are rated "High Severity" and five "Medium Severity".

The company also fixed a security vulnerability in Intel® Boot Guard and Intel® Trusted Execution Technology (TXT) for some Intel processors that could lead to privilege escalation. The issue affects several Intel processor models, including the last three generations of Intel Core, some Celeron, Atom, Pentium, Xeon, Gold, and Silver models, and several chipset series.

The company also released fixes for critical vulnerabilities in the NUC firmware and In-Band Manageability software, as well as vulnerabilities in Advisor, XTU, Killer Control Center, Manageability Commander, and the SGX platform.

Source: securitylab.ru