QwikSec

Security Database

CVE

CWE

Training

CVE-2017-5689

Published: May 2, 2017

Modified: Oct 21, 2025

PUBLISHED

Description

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

Vendor	Product	Versions
Intel Corporation	Intel Active Mangement Technology, Intel Small Business Technology, Intel Standard Manageability	affected `fixed in versions 6.2.61.3535, 7.1.91.3272, 8.1.71.3608, 9.1.41.3024, 10.0.55.3000, 11.0.25.3001, and 11.6.27.3264 and later`

References

https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability

x_refsource_MISC

https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

https://security.netapp.com/advisory/ntap-20170509-0001/

x_refsource_CONFIRM

https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf

x_refsource_MISC

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr

x_refsource_CONFIRM

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_us

x_refsource_CONFIRM

http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

x_refsource_CONFIRM

https://www.embedi.com/news/mythbusters-cve-2017-5689

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdf

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.