Strix
26.1K

CVE-2017-5704

UnknownEPSS 0.29%

Last modified

CVE-2017-5704 is a vulnerability of currently unknown severity. Platform sample code firmware included with 4th Gen Intel Core Processor, 5th Gen Intel Core Processor, 6th Gen Intel Core Processor, and 7th Gen Intel Core Processor potentially exposes password information in memory to a local attacker with administrative privileges.. EPSS estimates a 0.29% chance of exploitation in the next 30 days.

Description

Platform sample code firmware included with 4th Gen Intel Core Processor, 5th Gen Intel Core Processor, 6th Gen Intel Core Processor, and 7th Gen Intel Core Processor potentially exposes password information in memory to a local attacker with administrative privileges.

Metrics

EPSS Probability
0.29%

20.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IntelCore I34000m
IntelCore I34005u
IntelCore I34010u
IntelCore I34010y
IntelCore I34012y
IntelCore I34020y
IntelCore I34025u
IntelCore I34030u
IntelCore I34030y
IntelCore I34100e
IntelCore I34100m
IntelCore I34100u
IntelCore I34102e
IntelCore I34110e
IntelCore I34110m
IntelCore I34112e
IntelCore I34120u
IntelCore I34130
IntelCore I34130t
IntelCore I34150
IntelCore I34150t
IntelCore I34158u
IntelCore I34160
IntelCore I34160t
IntelCore I34170
IntelCore I34170t
IntelCore I34330
IntelCore I34330t
IntelCore I34330te
IntelCore I34340
IntelCore I34340te
IntelCore I34350
IntelCore I34350t
IntelCore I34360
IntelCore I34360t
IntelCore I34370
IntelCore I34370t
IntelCore I35005u
IntelCore I35010u
IntelCore I35015u
IntelCore I35020u
IntelCore I35157u
IntelCore I36006u
IntelCore I36098p
IntelCore I36100
IntelCore I36100e
IntelCore I36100h
IntelCore I36100t
IntelCore I36100te
IntelCore I36100u

Showing 50 of 273 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2017-5704?
Platform sample code firmware included with 4th Gen Intel Core Processor, 5th Gen Intel Core Processor, 6th Gen Intel Core Processor, and 7th Gen Intel Core Processor potentially exposes password information in memory to a local attacker with administrative privileges.
How severe is CVE-2017-5704?
Severity scoring for CVE-2017-5704 is pending analysis. The EPSS model estimates a 0.29% probability of exploitation in the next 30 days.
How do I fix CVE-2017-5704?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-5704?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST