Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2017-5691

Published: 26/07/2017 Updated: 03/10/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 9 | Impact Score: 6 | Exploitability Score: 2.3
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Nuc7i3bnk Bios

Vulnerability Summary

Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

intel nuc7i3bnk_bios -

intel nuc7i5bnk_bios -

intel nuc7i7bnh_bios -

intel stk2mv64cc_bios -

intel stk2m3w64cc_bios -

intel nuc6i7kyk_bios -

intel nuc6i3syk_bios -

intel nuc6i5syk_bios -

intel r1304sposhor_bios -

intel r1304sposhorr_bios -

intel r1208sposhorr_bios -

intel lr1304spcfg1r_bios -

intel r1208sposhor_bios -

intel s1200spsr_bios -

intel s1200spor_bios -

intel lr1304spcfg1_bios -

intel s1200spl_bios -

intel s1200spo_bios -

intel s1200sps_bios -

intel r1304sposhbn_bios -

intel s1200splr_bios -

intel r1304sposhbnr_bios -

Vendor Advisories

HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03560 rev 1 - Possible Elevation of Privilege and Information Disclosure via Intel® Software Guard Extensions (Intel® SGX) Vulnerability
Intel has discovered a vulnerability that could impact the security of Intel® Software Guard Extensions (Intel® SGX) Before exploiting this vulnerability, the malicious party would first need to control/modify BIOS code, which would require either physical access or discovering and exploiting a separate vulnerability ...

References

NVD-CWE-noinfohttps://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-frhttps://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_ushttps://support.lenovo.com/us/en/product_security/LEN-15184https://nvd.nist.govhttps://support.hp.com/us-en/document/c05605568
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook