多款Intel产品权限许可和访问控制漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1136125 漏洞类型 权限许可和访问控制
发布时间 2017-07-27 更新时间 2017-07-27
CVE编号 CVE-2017-5691 CNNVD-ID CNNVD-201707-1323
漏洞平台 N/A CVSS评分 9.3
|漏洞来源
https://www.securityfocus.com/bid/100493
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201707-1323
|漏洞详情
IntelNUC7i3BNK(KBL)等都是美国英特尔(Intel)公司的迷你型台式机。多款Intel产品存在安全漏洞。攻击者可利用该漏洞控制系统固件,影响SGX安全。以下产品受到影响:InteNUC7i3BNK(KBL);NUC7i5BNK;NUC7i7BNH;STK2MV64CC(SKL);STK2M3W64CC(SKL);NUC6i7KYK(SKL);NUC6i3SYK(SKL);NUC6i5SYK;IntelServerSystemR1304SPOSHOR;IntelServerSystemR1304SPOSHORR;IntelServerSystemR1208SPOSHORR;IntelServerSystemLR1304SPCFG1R;IntelServerSystemR1208SPOSHOR;IntelServerBoardS1200SPSR;IntelServerBoardS1200SPOR;IntelServerSystemLR1304SPCFG1;IntelServerBoardS1200SPL;IntelServerBoardS1200SPO;IntelServerBoardS1200SPS;IntelServerSystemR1304SPOSHBN;IntelServerBoardS1200SPLR;IntelServerSystemR1304SPOSHBNR。
|受影响的产品
Lenovo ThinkStation 0 Lenovo ThinkServer 0 Lenovo Thinkpad 0 Lenovo IdeaPad 0 Lenovo Desktop - All in One 0 Lenovo Desktop 0 Intel Xeon® E3-1500M v5 0
|参考资料

来源:CONFIRM
链接:https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr