CVE-2017-5691

Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9 CRITICAL
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
intelCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
VendorProductVersion
intelnuc7i3bnk_bios
-
intelnuc7i5bnk_bios
-
intelnuc7i7bnh_bios
-
intelstk2mv64cc_bios
-
intelstk2m3w64cc_bios
-
intelnuc6i7kyk_bios
-
intelnuc6i3syk_bios
-
intelnuc6i5syk_bios
-
intelr1304sposhor_bios
-
intelr1304sposhorr_bios
-
intelr1208sposhorr_bios
-
intellr1304spcfg1r_bios
-
intelr1208sposhor_bios
-
intels1200spsr_bios
-
intels1200spor_bios
-
intellr1304spcfg1_bios
-
intels1200spl_bios
-
intels1200spo_bios
-
intels1200sps_bios
-
intelr1304sposhbn_bios
-
intels1200splr_bios
-
intelr1304sposhbnr_bios
-
𝑥
= Vulnerable software versions
References
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr
https://support.lenovo.com/us/en/product_security/LEN-15184
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr
https://support.lenovo.com/us/en/product_security/LEN-15184