The latest security information on Intel® products.

Intel ID INTEL-SA-00086
Product family Various
Impact of vulnerability Elevation of Privilege
Severity rating Important
Original release Nov 20, 2017
Last revised Feb 07, 2018

Intel® Manageability Engine Firmware 11.0.x.x/11.5.x.x/11.6.x.x/11.7.x.x/11.10.x.x/11.20.x.x

 

CVE ID

 

 

CVE Title

 

 

CVSSv3 Vectors

 

 

CVE-2017-5705

 

 

Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code.

 

 

8.2 High

 

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

 

 

CVE-2017-5708

 

 

Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized process to access privileged content via unspecified vector.

 

 

7.5 High

 

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

 

 

CVE-2017-5711

 

 

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

 

 

6.7 Moderate

 

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

 

 

CVE-2017-5712

 

 

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.

 

 

7.2 High

 

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

 

Intel Manageability Engine Firmware 6.x/7.x/8.x/9.x/10.x*associated with Active Management Technology, Intel Standard Manageability, and Small Business Advantage; consumer platforms not impacted.

 

CVE ID

 

 

CVE Title

 

 

CVSSv3 Vectors

 

 

CVE-2017-5711*

 

 

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 6.x/7.x/8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

 

 

6.7 Moderate

 

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

 

 

CVE-2017-5712*

 

 

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 6.x/7.x/8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.

 

 

7.2 High

 

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

 

Server Platform Service 4.0.x.x

 

CVE ID

 

 

CVE Title

 

 

CVSSv3 Vectors

 

 

CVE-2017-5706

 

 

Multiple buffer overflows in kernel in Intel Server Platform Services Firmware 4.0 allow attacker with local access to the system to execute arbitrary code.

 

 

CVSS 8.2 High

 

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

 

 

CVE-2017-5709

 

 

Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector.

 

 

CVSS 7.5 High

 

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

 

IntelTrusted Execution Engine 3.0.x.x

 

CVE ID

 

 

CVE Title

 

 

CVSSv3 Vectors

 

 

CVE-2017-5707

 

 

Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code.

 

 

CVSS 8.2 High

 

 

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

 

 

CVE-2017-5710

 

 

Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access privileged content via unspecified vector.

 

 

CVSS 7.5 High  

 

 

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

 

 

Associated CPU Generation

 

 

Resolved Firmware version

 

 

3rd Generation Intel® Core™ Processor Family 

 

 

Recommended: Intel® ME 8.1.72.3002 or higher 

 

 

4th Generation Intel® Core™ Processor Family  

 

 

Recommended: Intel® ME 9.1.42.3002 or higher

Recommended: Intel® ME 9.5.61.3012 or higher

 

 

5th Generation Intel® Core™ Processor Family 

 

 

Recommended: Intel® ME 10.0.56.3002 or higher 

 

 

6th Generation Intel® Core™ Processor Family

 

 

 

6th Gen X-Series Intel® CoreTM Processor

 

 

Recommended: Intel® ME 11.8.50.3425 or higher

Minimum: Intel® ME 11.8.50.3399

 

Recommended: Intel® ME 11.11.50.1422 or higher

Minimum: Intel® ME 11.11.50.1402

 

 

7th Generation Intel® Core™ Processor Family

 

 

 

7th Gen X-Series Intel® CoreTM Processor

 

 

Recommended: Intel® ME 11.8.50.3425 or higher

Minimum: Intel® ME 11.8.50.3399

 

Recommended: Intel® ME 11.11.50.1422 or higher

Minimum: Intel® ME 11.11.50.1402

 

 

8th Generation Intel® Core™ Processor Family

 

Recommended: Intel® ME 11.8.50.3425 or higher

Minimum: Intel® ME 11.8.50.3399

 

 

Intel® Xeon® Processor E3-1200 v5 Product Family

 

 

Recommended: Intel® ME 11.8.50.3425 or higher

Minimum: Intel® ME 11.8.50.3399

Intel® SPS 4.1.4.054

 

 

Intel® Xeon® Processor E3-1200 v6 Product Family

 

 

Recommended: Intel® ME 11.8.50.3425 or higher

Minimum: Intel® ME 11.8.50.3399

Intel® SPS 4.1.4.054

 

 

Intel® Xeon® Processor Scalable Family

 

 

 

 

Intel SPS 4.0.04.288

Recommended: Intel® ME 11.21.50.1424 or higher

Minimum: Intel® ME 11.21.50.1400

 

 

Intel® Xeon® Processor W Family

 

Recommended: Intel® ME 11.11.50.1422 or higher

Minimum: Intel® ME 11.11.50.1402

 

 

Intel® Atom® C3000 Processor Family

 

 

 Intel® SPS 4.0.04.139

 

 Intel® Pentium® Processor G Series

 

 

Recommended: Intel® ME 11.8.50.3425 or higher


Minimum: Intel® ME 11.8.50.3399

 

 

Apollo Lake Intel® Atom Processor E3900 series

 

 

Intel® TXE Firmware 3.1.50.2222– Production version release

 

 

Apollo Lake Intel® Pentium™

 

 

Intel® TXE Firmware 3.1.50.2222– Production version release

 

 

Celeron™ N series Processors

 

 

Intel® TXE Firmware 3.1.50.2222– Production version release

 

 

Celeron™ J series Processors

 

 

Intel® TXE Firmware 3.1.50.2222– Production version release

 

Revision history:

Revision

Date

Description

1.0

20-November-2017

Initial Release

1.1 

21-November-2017 

Updated Recommended and minimum versions 

1.2 

22-November-2017 

Updated links to online support page

1.3 

29-November-2017 

Updated title for Intel® Manageability Engine Firmware 8.x/9.x/10.x 

1.4 

01-December-2017 

Added clarification for physical access requirement 

1.5 

19-December-2017 

Updated references for Intel® Manageability Engine Firmware 6.x/7.x

1.6 

22-December-2017 

Further clarified references to Intel® Manageability Engine Firmware 6.x/7.x 

1.7 

30-January-2018 

Added clarifying note on iCLS

1.8 

07-February-2018 

Added reference to the Linux Recovery Tools