Lenovo Security Advisory: LEN-21032
**Potential Impact:**Elevation of Privilege
Severity: High
Scope of Impact: Industry-wide
CVE Identifier: CVE-2018-3627
Summary Description:
Intel performed a security review of their Intel® Management Engine (ME) 11.x firmware, and identified a security vulnerability allowing elevation of privilege via local access.
Mitigation Strategy for Customers (what you should do to protect yourself):
Intel recommends updating to the firmware version (or newer) indicated for your model in the Product Impact section below.
This advisory applies only to ME variants used in consumer/corporate PCs and workstations. The Server Platform Services (SPS) and Trusted Execution Environment (TXE) ME variants are not affected.
Product Impact: