Intel® Converged Security and Management Engine (Intel® CSME) 11.x Issue (INTEL-SA-00118)


Product Information & Documentation



To improve the robustness of the Intel® Converged Security and Management Engine (Intel® CSME), Intel continues to perform security reviews of Intel CSME with the objective of enhancing firmware resilience. As a result, Intel has identified a security vulnerability that could potentially place affected platforms at risk.

The issue affects Intel® CSME 11.x used in consumer/corporate PCs (Intel® vPro™or not, Intel® AMT or not), IoT devices, and workstations. You may find the affected firmware version on certain products:

  • 6th, 7th, and 8th generation Intel® Core™ Processor Family
  • Intel® Xeon® Processor E3-1200 v5 and v6 Product Family
  • Intel® Xeon® W processor Family

Intel has implemented and validated an Intel® CSME firmware update (version 11.8.50 or higher) that addresses the vulnerability identified. We highly recommend that system administrators and system owners apply all available firmware updates from their system/equipment manufacturer as soon as possible.

View Intel Security Advisory INTEL-SA-00118 for additional details.

Contact your system manufacturer to obtain needed system updates.

Questions and Answers

Click or the question for the answer:

I built my computer from components; I don't have a system manufacturer to contact. What do I do? Contact the manufacturer of the motherboard you purchased to build your system. They're responsible for distributing the correct BIOS or firmware update for the motherboard.
Does this issue impact Consumer products? Yes.
Does this issue impact Corporate products? Yes.
What Intel® Management Engine (Intel® ME) versions are affected by the identified Issue? Intel® ME 11.0.0 through 11.8.x and 11.10.x through 11.11.x.
Is Intel® Server Platform Services affected? No, Intel® Server Platform Services isn't affected.
Is Intel® Trusted Execution Engine (Intel® TXE) affected? No, Intel® TXE isn't affected.