CVE-2017-5689 : An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Mana

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

Published 2017-05-02 14:59:01

Updated 2020-02-18 17:12:16

Source Intel Corporation

View at NVD, CVE.org

CVE-2017-5689 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Intel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageabilit

CISA required action:

Apply updates per vendor instructions.

CISA description:

Intel products contain a vulnerability which can allow attackers to perform privilege escalation.

Added on 2022-01-28 Action due date 2022-07-28

Exploit prediction scoring system (EPSS) score for CVE-2017-5689

Probability of exploitation activity in the next 30 days: 97.40%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2017-5689

Intel AMT Digest Authentication Bypass Scanner

Disclosure Date: 2017-05-05

First seen: 2020-04-26

auxiliary/scanner/http/intel_amt_digest_bypass

This module scans for Intel Active Management Technology endpoints and attempts to bypass authentication using a blank HTTP digest (CVE-2017-5689). This service can be found on ports 16992, 16993 (tls), 623, and 624 (tls). Authors: - hdm <x@hdm.io>

More information

CVSS scores for CVE-2017-5689

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2017-5689

https://security.netapp.com/advisory/ntap-20170509-0001/

CVE-2017-5689 Intel Management Engine Vulnerability in Multiple NetApp Products | NetApp Product Security
Third Party Advisory
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_us

HPESBHF03754 rev.1 - HPE ML10 Gen 9 Server using Intel Xeon E3-1200 v5 Processor, Remote Access Restriction Bypass
Third Party Advisory
http://www.securityfocus.com/bid/98269

Multiple Intel Products CVE-2017-5689 Privilege Escalation Vulnerability
Third Party Advisory;VDB Entry
http://www.securitytracker.com/id/1038385

Intel Active Management Technology Authentication Flaw Lets Remote and Local Users Gain Elevated Privileges - SecurityTracker
Third Party Advisory;VDB Entry
https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf

Error: Page Not Found
Broken Link
https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability

Rediscovering the Intel AMT Vulnerability - Blog | Tenable®
Technical Description;Third Party Advisory
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr

INTEL-SA-00075
Patch;Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdf

Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Oracle Critical Patch Update - July 2017
Patch;Third Party Advisory

CVEs referencing this url

Products affected by CVE-2017-5689

Intel » Active Management Technology Firmware » Version: 9.1
cpe:2.3:o:intel:active_management_technology_firmware:9.1:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 9.5
cpe:2.3:o:intel:active_management_technology_firmware:9.5:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 11.6
cpe:2.3:o:intel:active_management_technology_firmware:11.6:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 10.0
cpe:2.3:o:intel:active_management_technology_firmware:10.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 11.0
cpe:2.3:o:intel:active_management_technology_firmware:11.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 6.1
cpe:2.3:o:intel:active_management_technology_firmware:6.1:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 6.2
cpe:2.3:o:intel:active_management_technology_firmware:6.2:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 6.0
cpe:2.3:o:intel:active_management_technology_firmware:6.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 9.0
cpe:2.3:o:intel:active_management_technology_firmware:9.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 7.0
cpe:2.3:o:intel:active_management_technology_firmware:7.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 7.1
cpe:2.3:o:intel:active_management_technology_firmware:7.1:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 11.5
cpe:2.3:o:intel:active_management_technology_firmware:11.5:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 8.0
cpe:2.3:o:intel:active_management_technology_firmware:8.0:*:*:*:*:*:*:*
Matching versions
Intel » Active Management Technology Firmware » Version: 8.1
cpe:2.3:o:intel:active_management_technology_firmware:8.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2017-5689