PT-2017-16680 · Intel · Intel Nuc7I5Bnh+2

Published

2017-10-11

Updated

2019-10-03

CVE-2017-5701

CVSS v3.1

7.1

High

Vector

AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel NUC7i3BNK versions BN0049 and below Intel NUC7i3BNH versions BN0049 and below Intel NUC7i5BNK versions BN0049 and below Intel NUC7i5BNH versions BN0049 and below Intel NUC7i7BNH versions BN0049 and below

Description The issue is related to an insecure platform configuration in system firmware, allowing an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.

Recommendations For Intel NUC7i3BNK versions BN0049 and below, update the firmware to a version above BN0049. For Intel NUC7i3BNH versions BN0049 and below, update the firmware to a version above BN0049. For Intel NUC7i5BNK versions BN0049 and below, update the firmware to a version above BN0049. For Intel NUC7i5BNH versions BN0049 and below, update the firmware to a version above BN0049. For Intel NUC7i7BNH versions BN0049 and below, update the firmware to a version above BN0049.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-5701

Affected Products

Intel Nuc7I3Bnh

Intel Nuc7I5Bnh

Intel Nuc7I7Bnh

PT-2017-16680 · Intel · Intel Nuc7I5Bnh+2

CVE-2017-5701

Related Identifiers

Affected Products

References · 4