CyberSec.Space Logo
Back to CVE Browser

CVE-2017-5707

HIGH
7.8
CVSS Severity Score
EPSS Score0.1790%
EPSS Percentile39.03th
PublishedNov 21, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code.

Affected Platforms (CPE)

๐Ÿ’ป
Intel

Trusted Execution Engine Firmware

= 3.0

References & Advisories

๐Ÿ”— http://www.securityfocus.com/bid/101919
๐Ÿ”— https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf
๐Ÿ”— https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr
๐Ÿ”— https://security.netapp.com/advisory/ntap-20171120-0001/
๐Ÿ”— https://twitter.com/PTsecurity_UK/status/938447926128291842
๐Ÿ”— https://www.asus.com/News/wzeltG5CjYaIwGJ0
๐Ÿ”— https://www.synology.com/support/security/Synology_SA_17_73
๐Ÿ”— http://www.securityfocus.com/bid/101919

Related Vulnerabilities

CVE-2017-57107.8

Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access priv...

CVE-2018-36557.3

A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel ...

CVE-2018-121476.7

Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intelยฎ Server Platform Services before v...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...