Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00141
HistorySep 11, 2018 - 12:00 a.m.

Intel® Active Management Technology 9.x/10.x/11.x/12.x Security Review Cumulative Update Advisory

2018-09-1100:00:00
Intel Security Center
www.intel.com
16

0.009 Low

EPSS

Percentile

83.1%

JSON

Summary:

Multiple potential security vulnerabilities in Intel® Active Management Technology (AMT) in Intel® CSME firmware may allow arbitrary code execution, a partial denial of service or information disclosure. Intel is releasing Intel® CSME firmware updates to mitigate these potential vulnerabilities.****

Vulnerability Details

CVEID:** **CVE-2018-3657

Description: Multiple buffer overflows in Intel® AMT in Intel® CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel® AMT execution privilege via local access.

CVSS Base Score:** **6.7 Medium

CVSS Vector:** **CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVEID:** **CVE-2018-3658

Description: Multiple memory leaks in Intel® AMT in Intel® CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel® AMT provisioned to potentially cause a partial denial of service via network access.

CVSS Base Score:** **5.3 Medium

CVSS Vector:** CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L**

CVEID:** **CVE-2018-3616

Description: Bleichenbacher-style side channel vulnerability in TLS implementation in Intel® Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

CVSS Base Score:** **7.4 High

CVSS Vector:** **CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected Products:

Intel® Management Engine (ME):

Updated ME Firmware version

|

Replaces ME Firmware version

Intel® CSME 11.8.55

|

11.0.x, 11.5.x, 11.6.x, 11.7.x, 11.8.x

Intel® CSME 11.11.55

|

11.10.x, 11.11.x

Intel® CSME 11.21.55

|

11.20.x, 11.21.x

Intel® ME 10.0.60

|

10.0.x

Intel® ME 9.5.65*

|

9.5.x

Intel® ME 9.1.45*

|

9.0.x, 9.1.x

Intel® CSME 12.0.6

|

12.0.3

*resolves CVE-2018-3616 only.

Recommendations:

Intel recommends that users of Intel® CSME update to the latest version provided by the system manufacturer that addresses these issues.

Acknowledgements:

Intel would like to thank Hanno Böck, Juraj Somorovsky (Hackmanit GmbH, RuhrUniversität Bochum) and Craig Young (Tripwire VERT) for reporting CVE-2018-3616 and working with us on coordinated disclosure.

CVE-2018-3657 and CVE-2018-3658 were found internally by Intel.

Related

ics 1
openvas 1
lenovo 2
hp 1
prion 3
f5 3
cve 3
nvd 3
cvelist 3
ics
ics
Siemens Intel Active Management Technology of SIMATIC IPCs
2019-02-12 12:00:00
openvas
openvas
Intel Active Management Technology Multiple Vulnerabilities (INTEL-SA-00141)
2018-09-14 00:00:00
lenovo
lenovo
Intel CSME / SPS and TXE Vulnerabilities - US
2018-09-20 16:57:00
Intel CSME / SPS and TXE Vulnerabilities - Lenovo Support NL
2018-10-01 19:13:00
hp
hp
HPSBHF03592 rev. 3 - Intel Converged Security and Management Engine (CSME) and Power Management Controller (PMC) Security Updates
2018-09-11 00:00:00
prion
prion
Design/Logic Flaw
2018-09-12 19:29:00
Design/Logic Flaw
2018-09-12 19:29:00
Buffer overflow
2018-09-12 19:29:00
f5
f5
K41192923 : Intel CPU vulnerability CVE-2018-3616
2018-09-28 00:00:00
K11561403 : Intel CPU vulnerability CVE-2018-3657
2018-09-28 00:00:00
K68292031 : Intel CPU vulnerability CVE-2018-3658
2018-09-28 00:00:00
cve
cve
CVE-2018-3616
2018-09-12 19:29:02
CVE-2018-3657
2018-09-12 19:29:02
CVE-2018-3658
2018-09-12 19:29:02
nvd
nvd
CVE-2018-3616
2018-09-12 19:29:02
CVE-2018-3657
2018-09-12 19:29:02
CVE-2018-3658
2018-09-12 19:29:02
cvelist
cvelist
CVE-2018-3616
2018-09-11 00:00:00
CVE-2018-3657
2018-09-11 00:00:00
CVE-2018-3658
2018-09-11 00:00:00

0.009 Low

EPSS

Percentile

83.1%

JSON
Related for INTEL:INTEL-SA-00141
ics1openvas1lenovo2hp1prion3f53cve3nvd3cvelist3