CVE-2017-5711

CWE-119Buffer Overflow3 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 64.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
23
Siemens Simatic Field PG M3 FirmwareSiemens Simatic Field PG M4 FirmwareSiemens Simatic Field PG M5 Firmware+20 more
Timeline
PublishedNov 21
Latest updateMay 14

Description

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages23 packages

NVDintel/manageability_engine_firmware8.0.0.08.1.71.3608+8
CVEListV5intel_corporation/active_management_technology8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20

🔴Vulnerability Details

2
GHSA
GHSA-mj87-pxff-57cc: Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 82022-05-14
CVEList
CVE-2017-5711: Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 82017-11-21