Vulnerabilities > CVE-2017-5698 - Unspecified vulnerability in Intel products

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

intel

NVD

Published: 2017-09-05

Updated: 2023-08-17

Summary

Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmware version 11.6.x.1xxx which is vulnerable to CVE-2017-5689 and can be performed by a local user with administrative privileges.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Manageability Engine Firmware 11.0.26.3000 Intel Manageability Engine Firmware 11.0.25.3001 Intel Active Management Technology Firmware 11.0.25.3001 Intel Active Management Technology Firmware 11.0.26.3000 Intel Small Business Technology Firmware 11.0.25.3001 Intel Small Business Technology Firmware 11.0.26.3000	6

References

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00082&languageid=en-fr