CRITICAL🚩 CISA KEV⚡ EXPLOIT✓ PATCH🇵🇱 Wersja polska

CVE-2017-5689

CVSS 9.8v3.1pub. 2017-05-02upd. 2026-04-22

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • HPE Proliant Ml10 Gen9 Server

    HW
    Hpe
    wszystkie wersje
  • HPE Proliant Ml10 Gen9 Server Firmware

    OS
    Hpe
    5.0
  • Intel Active Management Technology Firmware

    OS
    Intel
    10.011.011.511.66.06.16.27.07.18.08.19.09.19.5
  • Siemens Simatic Field Pg M3

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Field Pg M3 Firmware

    OS
    Siemens
    < 6.2.61.3535
  • Siemens Simatic Field Pg M4

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Field Pg M4 Firmware

    OS
    Siemens
    < 18.01.06
  • Siemens Simatic Field Pg M5

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Field Pg M5 Firmware

    OS
    Siemens
    < 22.01.03
  • Siemens Simatic Ipc427d

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc427d Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc427e

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc427e Firmware

    OS
    Siemens
    < 21.01.05
  • Siemens Simatic Ipc477d

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc477d Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc477e

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc477e Firmware

    OS
    Siemens
    < 21.01.05
  • Siemens Simatic Ipc547d

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc547d Firmware

    OS
    Siemens
    < 7.1.91.3272
  • Siemens Simatic Ipc547e

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc547e Firmware

    OS
    Siemens
    < 9.1.41.3024
  • Siemens Simatic Ipc547g

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc547g Firmware

    OS
    Siemens
    < 11.0.26.3000
  • Siemens Simatic Ipc627c

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc627c Firmware

    OS
    Siemens
    < 6.2.61.3535
  • Siemens Simatic Ipc627d

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc627d Firmware

    OS
    Siemens
    < 9.1.41.3024
  • Siemens Simatic Ipc647c

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Ipc647c Firmware

    OS
    Siemens
    < 6.2.61.3535
  • Siemens Simatic Ipc647d

    HW
    Siemens
    wszystkie wersje

CISA KEV — detailsi

Vendori
Intel
Producti
Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageability
Added to KEVi
January 28, 2022
Remediation deadline (US Federal)i
July 28, 2022(overdue)
Required action (CISA)i

Apply updates per vendor instructions.

CISA descriptioni

Intel products contain a vulnerability which can allow attackers to perform privilege escalation.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 28 lipca 2022
CWE
References

Related vulnerabilities

CVE-2022-30601CRITICAL9.8ten sam produkt

Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthe...

CVE-2020-8747CRITICAL9.1ten sam produkt

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0...

CVE-2020-8752CRITICAL9.8ten sam produkt

Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22....

CVE-2020-8758CRITICAL9.8ten sam produkt

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before...

CVE-2020-0595CRITICAL9.8ten sam produkt

Use after free in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 ...