CVE-2018-3652

Name of the Vulnerable Software and Affected Versions Intel Xeon Processor E3 Family versions (affected versions not specified) Intel Xeon Scalable processors versions (affected versions not specified) Intel Xeon Processor D Family versions (affected versions not specified)

Description The issue concerns existing UEFI setting restrictions for DCI (Direct Connect Interface) that could allow a limited physical presence attacker to access platform secrets via debug interfaces.

Recommendations For Intel Xeon Processor E3 Family, update UEFI settings to restrict access to debug interfaces. For Intel Xeon Scalable processors, restrict physical access to the system to minimize the risk of exploitation. For Intel Xeon Processor D Family, consider disabling debug interfaces until a more secure configuration is available.