Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-5691

Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.

Published

2017-07-26T15:29:00.283

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 9.0 (CRITICAL)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

8.6

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	nuc7i3bnk_bios	-	Yes
Hardware	intel	nuc7i3bnk	-	No
Operating System	intel	nuc7i5bnk_bios	-	Yes
Hardware	intel	nuc7i5bnk	-	No
Operating System	intel	nuc7i7bnh_bios	-	Yes
Hardware	intel	nuc7i7bnh	-	No
Operating System	intel	stk2mv64cc_bios	-	Yes
Hardware	intel	stk2mv64cc	-	No
Operating System	intel	stk2m3w64cc_bios	-	Yes
Hardware	intel	stk2m3w64cc	-	No
Operating System	intel	nuc6i7kyk_bios	-	Yes
Hardware	intel	nuc6i7kyk	-	No
Operating System	intel	nuc6i3syk_bios	-	Yes
Hardware	intel	nuc6i3syk	-	No
Operating System	intel	nuc6i5syk_bios	-	Yes
Hardware	intel	nuc6i5syk	-	No
Operating System	intel	r1304sposhor_bios	-	Yes
Hardware	intel	r1304sposhor	-	No
Operating System	intel	r1304sposhorr_bios	-	Yes
Hardware	intel	r1304sposhorr	-	No
Operating System	intel	r1208sposhorr_bios	-	Yes
Hardware	intel	r1208sposhorr	-	No
Operating System	intel	lr1304spcfg1r_bios	-	Yes
Hardware	intel	lr1304spcfg1r	-	No
Operating System	intel	r1208sposhor_bios	-	Yes
Hardware	intel	r1208sposhor	-	No
Operating System	intel	s1200spsr_bios	-	Yes
Hardware	intel	s1200spsr	-	No
Operating System	intel	s1200spor_bios	-	Yes
Hardware	intel	s1200spor	-	No
Operating System	intel	lr1304spcfg1_bios	-	Yes
Hardware	intel	lr1304spcfg1	-	No
Operating System	intel	s1200spl_bios	-	Yes
Hardware	intel	s1200spl	-	No
Operating System	intel	s1200spo_bios	-	Yes
Hardware	intel	s1200spo	-	No
Operating System	intel	s1200sps_bios	-	Yes
Hardware	intel	s1200sps	-	No
Operating System	intel	r1304sposhbn_bios	-	Yes
Hardware	intel	r1304sposhbn	-	No
Operating System	intel	s1200splr_bios	-	Yes
Hardware	intel	s1200splr	-	No
Operating System	intel	r1304sposhbnr_bios	-	Yes
Hardware	intel	r1304sposhbnr	-	No

References

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us Third Party Advisory ([email protected])
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr Vendor Advisory ([email protected])
https://support.lenovo.com/us/en/product_security/LEN-15184 ([email protected])
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.lenovo.com/us/en/product_security/LEN-15184 (af854a3a-2127-422b-91ae-364da2661108)