Intel DCI Policy Update - Lenovo Support US

Lenovo Security Advisory: LEN-23611

Potential Impact: Privilege escalation, information disclosure

Severity: High

Scope of Impact: Industry-wide

CVE Identifier: CVE-2018-3652

Summary Description:

Intel is releasing Direct Connect Interface (DCI) policy update. Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel® Xeon® Processor E3 Family, Intel® Xeon® Scalable processors, and Intel® Xeon® Processor D Family can potentially allow a limited physical presence attacker to access platform secrets via debug interfaces.

Mitigation Strategy for Customers (what you should do to protect yourself):****

Update to the version of BIOS (or later) described for your system in the product impact section. You may want to control physical access to systems prior to applying the updates.

Product Impact: