Vulnerability Details CVE-2017-5689
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.94
EPSS Ranking 99.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
Proposed Action
Intel products contain a vulnerability which can allow attackers to perform privilege escalation.
Ransomware Campaign
Unknown
References
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
- http://www.securityfocus.com/bid/98269
- http://www.securitytracker.com/id/1038385
- https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdf
- https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_us
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr
- https://security.netapp.com/advisory/ntap-20170509-0001/
- https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf
- https://www.embedi.com/news/mythbusters-cve-2017-5689
- https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
- http://www.securityfocus.com/bid/98269
- http://www.securitytracker.com/id/1038385
- https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdf
- https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_us
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr
- https://security.netapp.com/advisory/ntap-20170509-0001/
- https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf
- https://www.embedi.com/news/mythbusters-cve-2017-5689
- https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability
Products affected by CVE-2017-5689
-
cpe:2.3:h:hpe:proliant_ml10_gen9_server:-
-
cpe:2.3:h:siemens:simatic_field_pg_m3:-
-
cpe:2.3:h:siemens:simatic_field_pg_m4:-
-
cpe:2.3:h:siemens:simatic_field_pg_m5:-
-
cpe:2.3:h:siemens:simatic_ipc427d:-
-
cpe:2.3:h:siemens:simatic_ipc427e:-
-
cpe:2.3:h:siemens:simatic_ipc477d:-
-
cpe:2.3:h:siemens:simatic_ipc477e:-
-
cpe:2.3:h:siemens:simatic_ipc547d:-
-
cpe:2.3:h:siemens:simatic_ipc547e:-
-
cpe:2.3:h:siemens:simatic_ipc547g:-
-
cpe:2.3:h:siemens:simatic_ipc627c:-
-
cpe:2.3:h:siemens:simatic_ipc627d:-
-
cpe:2.3:h:siemens:simatic_ipc647c:-
-
cpe:2.3:h:siemens:simatic_ipc647d:-
-
cpe:2.3:h:siemens:simatic_ipc677c:-
-
cpe:2.3:h:siemens:simatic_ipc677d:-
-
cpe:2.3:h:siemens:simatic_ipc827c:-
-
cpe:2.3:h:siemens:simatic_ipc827d:-
-
cpe:2.3:h:siemens:simatic_ipc847c:-
-
cpe:2.3:h:siemens:simatic_ipc847d:-
-
cpe:2.3:h:siemens:simatic_itp1000:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc427e:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc477d:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc547d:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc547e:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc547g:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc627c:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc647c:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc647d:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc677c:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc847c:-
-
cpe:2.3:h:siemens:simatic_pcs_7_ipc847d:-
-
cpe:2.3:h:siemens:simotion_p320-4_s:-
-
cpe:2.3:h:siemens:sinumerik_pcu_50.5-p:-
-
cpe:2.3:o:hpe:proliant_ml10_gen9_server_firmware:5.0
-
cpe:2.3:o:intel:active_management_technology_firmware:10.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.5
-
cpe:2.3:o:intel:active_management_technology_firmware:11.6
-
cpe:2.3:o:intel:active_management_technology_firmware:6.0
-
cpe:2.3:o:intel:active_management_technology_firmware:6.1
-
cpe:2.3:o:intel:active_management_technology_firmware:6.2
-
cpe:2.3:o:intel:active_management_technology_firmware:7.0
-
cpe:2.3:o:intel:active_management_technology_firmware:7.1
-
cpe:2.3:o:intel:active_management_technology_firmware:8.0
-
cpe:2.3:o:intel:active_management_technology_firmware:8.1
-
cpe:2.3:o:intel:active_management_technology_firmware:9.0
-
cpe:2.3:o:intel:active_management_technology_firmware:9.1
-
cpe:2.3:o:intel:active_management_technology_firmware:9.5
-
cpe:2.3:o:siemens:simatic_field_pg_m3_firmware:*
-
cpe:2.3:o:siemens:simatic_field_pg_m4_firmware:*
-
cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:-
-
cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:22.01.01
-
cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:22.01.02
-
cpe:2.3:o:siemens:simatic_ipc427d_firmware:-
-
cpe:2.3:o:siemens:simatic_ipc427e_firmware:-
-
cpe:2.3:o:siemens:simatic_ipc427e_firmware:21.01.03
-
cpe:2.3:o:siemens:simatic_ipc477d_firmware:-
-
cpe:2.3:o:siemens:simatic_ipc477e_firmware:-
-
cpe:2.3:o:siemens:simatic_ipc477e_firmware:21.01.03
-
cpe:2.3:o:siemens:simatic_ipc547d_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc547e_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc547g_firmware:-
-
cpe:2.3:o:siemens:simatic_ipc627c_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc627d_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc647c_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc647d_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc677c_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc677d_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc827c_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc827d_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc847c_firmware:*
-
cpe:2.3:o:siemens:simatic_ipc847d_firmware:*
-
cpe:2.3:o:siemens:simatic_itp1000_firmware:-
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc427e_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc427e_firmware:-
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc477d_firmware:-
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc547d_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc547e_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc547g_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc627c_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc647c_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc647d_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc677c_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc847c_firmware:*
-
cpe:2.3:o:siemens:simatic_pcs_7_ipc847d_firmware:*
-
cpe:2.3:o:siemens:simotion_p320-4_s_firmware:5.4
-
cpe:2.3:o:siemens:sinumerik_pcu50.5-p_firmware:*