Vulnerability Description
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hpe | Proliant Ml10 Gen9 Server Firmware | 5.0 |
| Hpe | Proliant Ml10 Gen9 Server | - |
| Siemens | Simatic Itp1000 Firmware | < 9.1.41.3024 |
| Siemens | Simatic Itp1000 | - |
| Siemens | Simatic Ipc847D Firmware | < 9.1.41.3024 |
| Siemens | Simatic Ipc847D | - |
| Siemens | Simatic Ipc847C Firmware | < 6.2.61.3535 |
| Siemens | Simatic Ipc847C | - |
| Siemens | Simatic Ipc827D Firmware | < 9.1.41.3024 |
| Siemens | Simatic Ipc827D | - |
| Siemens | Simatic Ipc827C Firmware | < 6.2.61.3535 |
| Siemens | Simatic Ipc827C | - |
| Siemens | Simatic Ipc677D Firmware | < 9.1.41.3024 |
| Siemens | Simatic Ipc677D | - |
| Siemens | Simatic Ipc677C Firmware | < 6.2.61.3535 |
| Siemens | Simatic Ipc677C | - |
| Siemens | Simatic Ipc647D Firmware | < 9.1.41.3024 |
| Siemens | Simatic Ipc647D | - |
| Siemens | Simatic Ipc647C Firmware | < 6.2.61.3535 |
| Siemens | Simatic Ipc647C | - |
Related Weaknesses (CWE)
References
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlPatchThird Party Advisory
- http://www.securityfocus.com/bid/98269Broken LinkThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038385Broken LinkThird Party AdvisoryVDB Entry
- https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdfThird Party Advisory
- https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-RBroken Link
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_naThird Party Advisory
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageiPatchVendor Advisory
- https://security.netapp.com/advisory/ntap-20170509-0001/Third Party Advisory
- https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdfBroken LinkExploitTechnical Description
- https://www.embedi.com/news/mythbusters-cve-2017-5689Broken LinkThird Party Advisory
- https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerabilityTechnical DescriptionThird Party Advisory
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlPatchThird Party Advisory
- http://www.securityfocus.com/bid/98269Broken LinkThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038385Broken LinkThird Party AdvisoryVDB Entry
- https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdfThird Party Advisory
FAQ
What is CVE-2017-5689?
CVE-2017-5689 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged ...
How severe is CVE-2017-5689?
CVE-2017-5689 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-5689?
Check the references section above for vendor advisories and patch information. Affected products include: Hpe Proliant Ml10 Gen9 Server Firmware, Hpe Proliant Ml10 Gen9 Server, Siemens Simatic Itp1000 Firmware, Siemens Simatic Itp1000, Siemens Simatic Ipc847D Firmware.