Lucene search

[email protected]CVE-2013-5740

HistorySep 12, 2013 - 6:37 p.m.

CVE-2013-5740

2013-09-1218:37:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve

intel

trusted execution technology

txt

sinit

acm

vulnerability

security

nvd

7.4 High

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Unspecified vulnerability in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment (MLE) is invoked, allows local users to bypass the Trusted Execution Technology protection mechanism and perform other unspecified SINIT ACM functions via unspecified vectors.

CPENameOperatorVersion
intel:qs77_chipsetintel qs77 chipseteq-
intel:trusted_execution_technology_sinit_authenticated_code_moduleintel trusted execution technology sinit authenticated code modulele1.1
intel:q67_express_chipsetintel q67 express chipseteq-
intel:c206_chipsetintel c206 chipseteq-
intel:qm77_chipsetintel qm77 chipseteq-
intel:mobile_intel_qs67_chipsetintel mobile intel qs67 chipseteq-
intel:mobile_intel_qm67_chipsetintel mobile intel qm67 chipseteq-
intel:c216_chipsetintel c216 chipseteq-
intel:c204_chipsetintel c204 chipseteq-
intel:c202_chipsetintel c202 chipseteq-

CPE	Name	Operator	Version
intel:qs77_chipset	intel qs77 chipset	eq	-
intel:trusted_execution_technology_sinit_authenticated_code_module	intel trusted execution technology sinit authenticated code module	le	1.1
intel:q67_express_chipset	intel q67 express chipset	eq	-
intel:c206_chipset	intel c206 chipset	eq	-
intel:qm77_chipset	intel qm77 chipset	eq	-
intel:mobile_intel_qs67_chipset	intel mobile intel qs67 chipset	eq	-
intel:mobile_intel_qm67_chipset	intel mobile intel qm67 chipset	eq	-
intel:c216_chipset	intel c216 chipset	eq	-
intel:c204_chipset	intel c204 chipset	eq	-
intel:c202_chipset	intel c202 chipset	eq	-

References

support.citrix.com/article/CTX138633

security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00035&languageid=en-fr

7.4 High

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2013-5740

cvelist1 prion1