CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-5705

HIGH
7.8
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile9.01th
Published2017年11月21日
Last Modified2026年5月13日

Vulnerability Description

Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code.

Affected Platforms (CPE)

💻
Intel

Manageability Engine Firmware

= 11.0
💻
Intel

Manageability Engine Firmware

= 11.5
💻
Intel

Manageability Engine Firmware

= 11.6
💻
Intel

Manageability Engine Firmware

= 11.7
💻
Intel

Manageability Engine Firmware

= 11.10
💻
Intel

Manageability Engine Firmware

= 11.20

References & Advisories

🔗 http://www.securityfocus.com/bid/101917
🔗 http://www.securitytracker.com/id/1039852
🔗 https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf
🔗 https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr
🔗 https://security.netapp.com/advisory/ntap-20171120-0001/
🔗 https://twitter.com/PTsecurity_UK/status/938447926128291842
🔗 https://www.asus.com/News/wzeltG5CjYaIwGJ0
🔗 https://www.synology.com/support/security/Synology_SA_17_73

関連する脆弱性情報

CVE-2018-36288.8

Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3....

CVE-2018-36438.2

A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engin...

CVE-2017-57087.8

Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized...

CVE-2017-57117.8

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6...