Privilege Escalation Vulnerability in Intel Trusted Execution Engine Firmware
CVE-2017-5710

7.8HIGH

Key Information:

Vendor

Intel
Status
Trusted Execution Engine
Vendor
CVE Published:
21 November 2017

What is CVE-2017-5710?

The vulnerability allows unauthorized processes to escalate their privileges within the Intel Trusted Execution Engine Firmware 3.0, providing malicious actors the potential to access privileged information through unspecified vectors. This poses a significant risk to system integrity and confidentiality, necessitating prompt remediation.

Affected Version(s)

Trusted Execution Engine 3.0

References

https://security.netapp.com/advisory/ntap-20171120-0001/
x_refsource_CONFIRM
http://www.securityfocus.com/bid/101922
vdb-entryx_refsource_BID
https://security-center.intel.com/advisory.aspx?intelid=I...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.