Yet another BIOS update! This one dated 11/9/21.
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00562.html
Summary: Potential security vulnerabilities in the BIOS reference code for some Intel® Processors may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2021-0157Description: Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
Does this mean someone must have local access to my machine in order to execute on this vulnerability? In which case, it isn’t a huge risk for me…..is it?
Do i have to jump right on these BIOS and Intel security updates when they require local access in order to execute?