[justinclift]

As pointed out by another commenter, Intel has released the advisary:

https://security-center.intel.com/advisory.aspx?intelid=INTE...

It confirms much of the SemiAccurate report, but also includes this:

"This vulnerability does not exist on Intel-based consumer PCs."

Which seems to differ from what SemiAccurate was saying. I'm not sure if it's SemiAccurate being... er... not completely accurate :D, or if it's Intel trying to downplay things.

I guess we'll find out more over the next few days/weeks.

[tyingq]

Looking at the Intel link, they take you down a path to see if you have vPro. That's on some i5s and i7s. So they are defining "consumer" roughly as "purchased at best buy or similar". There are certainly desktops in people's homes that have vPro. Even some of the higher end NUCs have it.

[mirimir]

Easier path: https://ark.intel.com/#@Processors

When I've purchased VirtualBox hosts, I've deliberately avoided stuff with vPro.

[Natanael_L]

I assume this is a bug in firmware version that's only used on enterprise class hardware, but that they assumed the bug also exists on consumer grade hardware on the basis of the circuits being mostly the same (and thus assuming the firmware is shared).