CVE-2020-24457

Name of the Vulnerable Software and Affected Versions: Intel Core Processors versions 8th through 10th Generation

Description: A logic error in the BIOS firmware may allow an unauthenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via physical access. The issue is related to a logical error in the BIOS microprogram, which could be exploited by an attacker to elevate privileges, cause a denial of service, or impact the confidentiality of protected information.

Recommendations: For 8th Generation Intel Core Processors, update the BIOS firmware to a version that addresses the logic error. For 9th Generation Intel Core Processors, update the BIOS firmware to a version that addresses the logic error. For 10th Generation Intel Core Processors, update the BIOS firmware to a version that addresses the logic error. As a temporary workaround, consider restricting physical access to the systems until a patch is available.