CyberSec.Space Logo
Back to CVE Browser

CVE-2017-5705

HIGH
7.8
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile9.01th
PublishedNov 21, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code.

Affected Platforms (CPE)

πŸ’»
Intel

Manageability Engine Firmware

= 11.0
πŸ’»
Intel

Manageability Engine Firmware

= 11.5
πŸ’»
Intel

Manageability Engine Firmware

= 11.6
πŸ’»
Intel

Manageability Engine Firmware

= 11.7
πŸ’»
Intel

Manageability Engine Firmware

= 11.10
πŸ’»
Intel

Manageability Engine Firmware

= 11.20

References & Advisories

πŸ”— http://www.securityfocus.com/bid/101917
πŸ”— http://www.securitytracker.com/id/1039852
πŸ”— https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf
πŸ”— https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr
πŸ”— https://security.netapp.com/advisory/ntap-20171120-0001/
πŸ”— https://twitter.com/PTsecurity_UK/status/938447926128291842
πŸ”— https://www.asus.com/News/wzeltG5CjYaIwGJ0
πŸ”— https://www.synology.com/support/security/Synology_SA_17_73

Related Vulnerabilities

CVE-2018-36288.8

Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3....

CVE-2018-36438.2

A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engin...

CVE-2017-57087.8

Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized...

CVE-2017-57117.8

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6...