CVE-2017-5689

Name: CVE-2017-5689
Creator: NVD / NIST
Published: 2017-05-02T14:59:00.52+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10Actively ExploitedEPSS 92.19%

Last modified Jun 17, 2026

CVE-2017-5689 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).. CISA has confirmed active exploitation in the wild. EPSS estimates a 92.19% chance of exploitation in the next 30 days.

Description

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

92.19%

99.8th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by Jul 28, 2022.

Weakness Enumeration

CWE-269

Affected Software

Vendor	Product	Versions
Hpe	Proliant Ml10 Gen9 Server Firmware	5.0
Siemens	Simatic Itp1000 Firmware	< 9.1.41.3024
Siemens	Simatic Ipc847d Firmware	< 9.1.41.3024
Siemens	Simatic Ipc847c Firmware	< 6.2.61.3535
Siemens	Simatic Ipc827d Firmware	< 9.1.41.3024
Siemens	Simatic Ipc827c Firmware	< 6.2.61.3535
Siemens	Simatic Ipc677d Firmware	< 9.1.41.3024
Siemens	Simatic Ipc677c Firmware	< 6.2.61.3535
Siemens	Simatic Ipc647d Firmware	< 9.1.41.3024
Siemens	Simatic Ipc647c Firmware	< 6.2.61.3535
Siemens	Simatic Ipc627d Firmware	< 9.1.41.3024
Siemens	Simatic Ipc627c Firmware	< 6.2.61.3535
Siemens	Simatic Ipc547g Firmware	< 11.0.26.3000
Siemens	Simatic Ipc547e Firmware	< 9.1.41.3024
Siemens	Simatic Ipc547d Firmware	< 7.1.91.3272
Siemens	Simatic Ipc477e Firmware	< 21.01.05
Siemens	Simatic Ipc477d Firmware	All versions
Siemens	Simatic Field Pg M3 Firmware	< 6.2.61.3535
Siemens	Simatic Field Pg M4 Firmware	< 18.01.06
Siemens	Simatic Field Pg M5 Firmware	< 22.01.03
Siemens	Simatic Pcs 7 Ipc427e Firmware	< 21.01.04
Siemens	Simatic Pcs 7 Ipc547d Firmware	< 7.1.91.3272
Siemens	Simatic Pcs 7 Ipc547e Firmware	< 9.1.41.3024
Siemens	Simatic Pcs 7 Ipc547g Firmware	< 11.0.26.3000
Siemens	Simatic Pcs 7 Ipc627c Firmware	< 6.2.61.3535
Siemens	Simatic Pcs 7 Ipc677c Firmware	< 6.2.61.3535
Siemens	Simatic Pcs 7 Ipc647c Firmware	< 6.2.61.3535
Siemens	Simatic Pcs 7 Ipc647d Firmware	< 9.1.41.3024
Siemens	Simatic Pcs 7 Ipc847c Firmware	< 6.2.61.3535
Siemens	Simatic Pcs 7 Ipc847d Firmware	< 9.1.41.3024
Siemens	Simatic Pcs 7 Ipc427e Firmware	All versions
Siemens	Simatic Pcs 7 Ipc477d Firmware	All versions
Siemens	Simatic Ipc427d Firmware	All versions
Siemens	Simatic Ipc427e Firmware	< 21.01.05
Siemens	Simotion P320-4 S Firmware	< 17.02.06.83.1
Siemens	Sinumerik Pcu50.5-P Firmware	< 6.2.61.3535
Intel	Active Management Technology Firmware	6.0
Intel	Active Management Technology Firmware	6.1
Intel	Active Management Technology Firmware	6.2
Intel	Active Management Technology Firmware	7.0
Intel	Active Management Technology Firmware	7.1
Intel	Active Management Technology Firmware	8.0
Intel	Active Management Technology Firmware	8.1
Intel	Active Management Technology Firmware	9.0
Intel	Active Management Technology Firmware	9.1
Intel	Active Management Technology Firmware	9.5
Intel	Active Management Technology Firmware	10.0
Intel	Active Management Technology Firmware	11.0
Intel	Active Management Technology Firmware	11.5
Intel	Active Management Technology Firmware	11.6

References

http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlPatch, Third Party Advisory
http://www.securityfocus.com/bid/98269Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038385Broken Link, Third Party Advisory, VDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdfThird Party Advisory
https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdfBroken Link
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_usThird Party Advisory
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-frPatch, Vendor Advisory
https://security.netapp.com/advisory/ntap-20170509-0001/Third Party Advisory
https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdfBroken Link, Exploit, Technical Description, Third Party Advisory
https://www.embedi.com/news/mythbusters-cve-2017-5689Broken Link, Third Party Advisory
https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerabilityTechnical Description, Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlPatch, Third Party Advisory
http://www.securityfocus.com/bid/98269Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038385Broken Link, Third Party Advisory, VDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-874235.pdfThird Party Advisory
https://downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdfBroken Link
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_usThird Party Advisory
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-frPatch, Vendor Advisory
https://security.netapp.com/advisory/ntap-20170509-0001/Third Party Advisory
https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdfBroken Link, Exploit, Technical Description, Third Party Advisory
https://www.embedi.com/news/mythbusters-cve-2017-5689Broken Link, Third Party Advisory
https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerabilityTechnical Description, Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-5689US Government Resource

Timeline

Published: May 2, 2017
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2017-5689?

How severe is CVE-2017-5689?

CVE-2017-5689 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 92.19% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2017-5689?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-5689?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST