2021.1, 2021.2 Intel® Advisory and Insyde® Software Security Advisory

Intel® Corporation (hereinafter Intel®) has reported that there are potential security vulnerabilities in the BIOS firmware, reference code, and some Intel® Processors that may allow escalation of privilege, denial of service or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities.

Regarding the UEFI firmware (InsydeH2O) used in our corporate PC products, Insyde® Software (hereinafter referred to as Insyde) has reported that "UEFI (InsydeH2O)" is vulnerable.

Vulnerability Summary:

Escalation of privilege, denial of service or information disclosure.

Details about the vulnerabilities:

For details, please see the following web pages:

2021.1 IPU – BIOS Advisory
2021.1 IPU – Intel® Processor Advisory
2021.1 IPU - Intel Atom® Processor Advisory
2021.1 IPU – Intel® CSME, SPS and LMS Advisory
2021.1 IPU - Intel® VT-d Advisory
2021.2 IPU - BIOS Advisory
Intel® Processor Advisory
BIOS Reference Code Advisory

2021.2 IPU - Intel® Processor Breakpoint Control Flow Advisory
Insyde® Security Advisory

Remediation:

Update packages that include Intel® BIOS and Insyde® UEFI Firmware.

Affected Products:

Please check the model list for applicable updates.

page top