PT-2017-16683 · Intel · Intel Nuc7I5Bnh+2
Jann Horn
·
Publicado
2017-10-11
·
Atualizado
2017-11-03
·
CVE-2017-5721
CVSS v3.1
7.5
Alta
| Vetor | AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel NUC7i3BNK versions BN0049 and below
Intel NUC7i3BNH versions BN0049 and below
Intel NUC7i5BNK versions BN0049 and below
Intel NUC7i5BNH versions BN0049 and below
Intel NUC7i7BNH versions BN0049 and below
Description
The issue is related to insufficient input validation in system firmware, which allows local attackers to execute arbitrary code by manipulating memory.
Recommendations
For Intel NUC7i3BNK versions BN0049 and below, update the system firmware to a version above BN0049.
For Intel NUC7i3BNH versions BN0049 and below, update the system firmware to a version above BN0049.
For Intel NUC7i5BNK versions BN0049 and below, update the system firmware to a version above BN0049.
For Intel NUC7i5BNH versions BN0049 and below, update the system firmware to a version above BN0049.
For Intel NUC7i7BNH versions BN0049 and below, update the system firmware to a version above BN0049.
Exploit
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Intel Nuc7I3Bnh
Intel Nuc7I5Bnh
Intel Nuc7I7Bnh