PT-2017-18110 · Compulab · Compulab Intense Pc+1

Hal Martin

Published

2017-06-06

Updated

2019-10-03

CVE-2017-8083

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21

Description The issue concerns the lack of the CloseMnf protection mechanism for write protection of flash memory regions in certain devices. This allows local users with administrative privileges to install a firmware rootkit.

Recommendations For CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21, update the BIOS to a version released after 2017-05-21 to enable the CloseMnf protection mechanism and prevent the installation of firmware rootkits.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2017-8083

Affected Products

Compulab Intense Pc

Mintbox 2

PT-2017-18110 · Compulab · Compulab Intense Pc+1

CVE-2017-8083

Weakness Enumeration

Related Identifiers

Affected Products

References · 4