CVE-2018-12205

Name of the Vulnerable Software and Affected Versions Intel Core Processor Platform Sample/Silicon Reference firmware for 8th Generation Intel Core Processor Intel Core Processor Platform Sample/Silicon Reference firmware for 7th Generation Intel Core Processor

Description The issue is related to inadequate access control and improper certificate validation in the firmware. This could potentially allow an unauthenticated user with physical access to escalate privileges. The exploitation of this issue may enable an attacker to execute arbitrary code.

Recommendations For 8th Generation Intel Core Processor firmware, update the firmware to a version that properly validates certificates and enforces access controls. For 7th Generation Intel Core Processor firmware, update the firmware to a version that properly validates certificates and enforces access controls. As a temporary workaround, consider restricting physical access to the devices until a patch is available.