Intel Management Engine Multiple Vulnerabilities

Last Update Date: 22 Nov 2017 09:48 Release Date: 22 Nov 2017 4416 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Network Management

TYPE: Network Management

Multiple vulnerabilities were identified in Intel Management Engine. A remote authenticated user can perform remote code execution on the target system. A local user can obtain elevated privileges on the target system.

Impact

  • Elevation of Privilege
  • Remote Code Execution

System / Technologies affected

  • 6th, 7th & 8th Generation Intel® Core™ Processor Family
  • Intel® Xeon® Processor E3-1200 v5 & v6 Product Family
  • Intel® Xeon® Processor Scalable Family
  • Intel® Xeon® Processor W Family
  • Intel® Atom® C3000 Processor Family
  • Apollo Lake Intel® Atom Processor E3900 series
  • Apollo Lake Intel® Pentium™
  • Celeron™ N and J series Processors

for detail, please refer to this link:

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows ASLR Vulnerability

21 Nov 2017 4111 Views

Next

Symantec Management Console Sensitive Information Disclosure Vulnerability

22 Nov 2017 4056 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY