The new flaw is with the Intel Management Engine which is it's own "mini computer" that runs on the motherboard, and is part of the chipset. As I understand, IME can still be connected to and worked with even when there is no CPU installed.
The issue is Arbitrary Code Execution at the IME level, which is hilarious because that's exactly the sort of problem that makes IME (And AMDs PSP) so questionable.
In order to "exploit" this flaw, you need unsupervised physical access, specialized tools, and a good amount of time. Realistically, I don't think most end-users are affected- The main cases that it will affect are PCs used in more secure environments using things like the "Trusted Platform Module" to try to prevent tampering with the system and which use things like full-disk encryption in concert with that tamper protection.