Denial of Service
Source: Intel
Reported By: Intel
Potential security vulnerabilities have been identified with how the SPI interface is configured on certain platforms. Specific SPI OpCodes may be left accessible and vulnerable to misuse.
In the lowest severity cases, the issue may allow malware to prevent component writes to portions of the SPI firmware device. In the highest severity cases, malware may be able to overwrite the firmware.
This issue affects both SPI HW Sequencing and SW Sequencing on Intel products with the Integrated SPI Controller.
HP has provided updates to mitigate this issue. Impacted HP products are shown in the table below.