Can you give me a brief summary of Intel-SA-00185?
Multiple potential security vulnerabilities in Intel® Converged Security and Management Engine (Intel® CSME), Intel® Server Platform Services (Intel® SMS), Intel® Trusted Execution Engine (Intel® TXE), and Intel® Active Management Technology (Intel® AMT) may allow users to potentially:
On March 12, 2019, Intel released information for security advisory Intel-SA-00185 relating to the (Intel® CSME). This information was released as part of Intel's regular product update process.
Refer to the public security advisory for complete details on the CVEs and CVSS scores.
Updated Intel® Converged Security and Management Engine (Intel® CSME) Firmware Version | Replaces Intel® CSME Firmware Version |
11.8.60 | 11.0 thru 11.8.55 |
11.11.60 | 11.10 thru 11.11.55 |
11.22.60 | 11.20 thru 11.22.0 |
12.0.20 | 12.0 thru 12.0.10 |
Updated Intel® Server Platform Services Firmware Version | Replaces Intel® Server Platform Services Version |
SPS 4.00.04.383 | SPS 4.00.04.367 thru SPS 4.00.04.382 |
SPS 4.01.02.174 | SPS 4.01.00.152.0 thru SPS 4.01.02.173 |
Updated Intel® Trusted Execution Engine Firmware Version | Replaces Intel® Trusted Execution Engine Firmware Version |
3.1.60 | 3.0 thru 3.1.50 |
4.0.10 | 4.0 thru 4.0.5 |
Contact your system or motherboard manufacturer to obtain a firmware or BIOS update that addresses this vulnerability. Intel can't provide updates for systems or motherboards from other manufacturers.
Click or the question for details:
Option 2: Download the Intel-SA-00125 Detection tool. Extract the tool and run the Intel-SA-00125-GUI.EXE program. Check the Intel ME Info section of the output for the Intel ME version number (example below).
If you have additional questions on this issue, contact Intel Customer Support.