Lucene search
LenovoLENOVO:PS500184-INSECURE-HANDLING-OF-BIOS-AND-AMT-PASSWORDS-IN-INTEL-PLATFORM-SAMPLE-FIRMWARE-NOSIDHistorySep 20, 2018 - 6:37 p.m.
Insecure Handling of BIOS and AMT Passwords in Intel Platform Sample Firmware - Lenovo Support NL
2018-09-2018:37:00
support.lenovo.com
EPSS
0
Percentile
5.1%
Lenovo Security Advisory: LEN-23848
Potential Impact: Information disclosure
Severity: High
Scope of Impact: Industry wide
CVE Identifier: CVE-2017-5704
Summary Description: Platform sample firmware supplied by Intel for multiple processor familes, and incorporated by Lenovo into multiple products, has been found to potentially expose password information in memory to a local attacker with administrative privileges.
Mitigation Strategy for Customers (what you should do to protect yourself): Update to the firmware level (or later) described for your system in the product impact section.
Product Impact:
Related
intel
intel
Insecure Handling of BIOS and AMT Passwords
2018-07-10 00:00:00
cve
cve
CVE-2017-5704
2018-07-10 21:29:00
nvd
nvd
CVE-2017-5704
2018-07-10 21:29:00
cvelist
cvelist
CVE-2017-5704
2018-07-10 21:00:00
lenovo
lenovo
prion
prion
Information disclosure
2018-07-10 21:29:00
EPSS
0
Percentile
5.1%
Related for LENOVO:PS500184-INSECURE-HANDLING-OF-BIOS-AND-AMT-PASSWORDS-IN-INTEL-PLATFORM-SAMPLE-FIRMWARE-NOSID