Vulnerability Description
Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector.
CVSS Score
7.8
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Server Platform Services Firmware | 4.0 |
References
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlIssue TrackingPatchThird Party Advisory
- http://www.securityfocus.com/bid/101906Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039955Third Party AdvisoryVDB Entry
- https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageiIssue TrackingVendor Advisory
- https://security.netapp.com/advisory/ntap-20171120-0001/Issue TrackingThird Party Advisory
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- https://www.asus.com/News/wzeltG5CjYaIwGJ0
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlIssue TrackingPatchThird Party Advisory
- http://www.securityfocus.com/bid/101906Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039955Third Party AdvisoryVDB Entry
- https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageiIssue TrackingVendor Advisory
- https://security.netapp.com/advisory/ntap-20171120-0001/Issue TrackingThird Party Advisory
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
FAQ
What is CVE-2017-5709?
CVE-2017-5709 is a vulnerability with a CVSS score of 7.8 (HIGH). Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector.
How severe is CVE-2017-5709?
CVE-2017-5709 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-5709?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Server Platform Services Firmware.