National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2017-5689

Change History

Initial Analysis - 5/17/2017 12:27:53 PM

Action Type Old Value New Value
Added CVSS V2
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Changed Reference Type
https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf No Types Assigned
https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf Exploit, Technical Description, Third Party Advisory
Changed Reference Type
https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability No Types Assigned
https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability Technical Description, Third Party Advisory
Added CWE
CWE-264
Changed Reference Type
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr No Types Assigned
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr Patch, Vendor Advisory
Changed Reference Type
http://www.securityfocus.com/bid/98269 No Types Assigned
http://www.securityfocus.com/bid/98269 Third Party Advisory, VDB Entry
Changed Reference Type
https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf No Types Assigned
https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf Broken Link
Added CPE Configuration
OR
     *cpe:2.3:o:intel:active_management_technology_firmware:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:6.1:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:6.2:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:7.1:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:8.1:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:9.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:9.1:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:9.5:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:10.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:11.0:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:11.5:*:*:*:*:*:*:*
     *cpe:2.3:o:intel:active_management_technology_firmware:11.6:*:*:*:*:*:*:*
Changed Reference Type
https://www.embedi.com/news/mythbusters-cve-2017-5689 No Types Assigned
https://www.embedi.com/news/mythbusters-cve-2017-5689 Third Party Advisory