Intel SA 00075 Security Advisory for Active Management Technology

Intel SA 00075 Security Advisory for Active Management Technology

There has been a lot of talk about security concerns in regards to AMT, here is a synopsis to the situation

  • We have received a report of a vulnerability in certain versions of Intel’s manageability firmware.
  • This vulnerability does not exist on consumer PCs.
  • This issue only affects business PCs using Intel® Active Management Technology (AMT), or Intel® Standard Manageability (ISM) or Intel® Small Business Technology (SBT). The vast majority of these is deployed at large companies.
  • We are not aware of any exploit for this vulnerability.
  • We are working with equipment manufacturers to make a firmware update available as soon as possible, and will share more details when we can.
  • Detection Guide and Tool is available to provide to customers and/or for CC agents to assist customers - Intel-SA-00075 Detection Guide.
  • The Detection Tool provides steps for single Windows GUI and Command Line Tool.  (This guide and tool is for systems running Windows, specific guide for Linux-based systems is pending
  • A Mitigation Guide is available to provide to customers and/or for CC agents to assist customers - Intel SA 00075 Mitigation Guide. (This guide is for systems running Windows, specific guide for Linux-based systems is pending)
  • Full Security Advisory can be found at - Intel SA 00075 Security Advisory

Important links

 

Zona: 

publicaciones de 4 / 0 nuevos
Último envío
Para obtener más información sobre las optimizaciones del compilador, consulte el aviso sobre la optimización.

Hi Joseph,

Could you clarify the status for Intel NUCs? Are those "consumer PCs" and not affected, or are all products having AMT enabled affected by this?

Specific products: DC53427HYE, NUC5i5MYHE. The INTEL-SA-00075 discovery tool suggests to check with OEM. I attached a screenshot.

Adjuntos: 

AdjuntoTamaño
Descargarimage/png sa-75.png39.13 KB

Intel® NUC and Compute Stick products impacted are listed below, with links to the product specific page within Download Center to obtain the BIOS update once it is available.

We just found that updates for the NUCs are available at the following link, but not listed on the product pages above:

https://www.intel.com/content/www/us/en/support/boards-and-kits/00002417...

Deje un comentario

Por favor inicie sesión para agregar un comentario. ¿No es socio? Únase ya