1. Home
  2. CVE Database
  3. CVE-2017-5691
CRITICAL · 9.0

CVE-2017-5691

Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows ...

Vulnerability Description

Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.

CVSS Score

9.0

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IntelNuc7I3Bnk Bios-
IntelNuc7I3Bnk-
IntelNuc7I5Bnk Bios-
IntelNuc7I5Bnk-
IntelNuc7I7Bnh Bios-
IntelNuc7I7Bnh-
IntelStk2Mv64Cc Bios-
IntelStk2Mv64Cc-
IntelStk2M3W64Cc Bios-
IntelStk2M3W64Cc-
IntelNuc6I7Kyk Bios-
IntelNuc6I7Kyk-
IntelNuc6I3Syk Bios-
IntelNuc6I3Syk-
IntelNuc6I5Syk Bios-
IntelNuc6I5Syk-
IntelR1304Sposhor Bios-
IntelR1304Sposhor-
IntelR1304Sposhorr Bios-
IntelR1304Sposhorr-

References

FAQ

What is CVE-2017-5691?

CVE-2017-5691 is a vulnerability with a CVSS score of 9.0 (CRITICAL). Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows ...

How severe is CVE-2017-5691?

CVE-2017-5691 has been rated CRITICAL with a CVSS base score of 9.0/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2017-5691?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Nuc7I3Bnk Bios, Intel Nuc7I3Bnk, Intel Nuc7I5Bnk Bios, Intel Nuc7I5Bnk, Intel Nuc7I7Bnh Bios.