- #INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP DRIVERS#
- #INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP UPDATE#
- #INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP DRIVER#
- #INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP SOFTWARE#
- #INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP SERIES#
The vulnerability identified in CVE-2017-5712 is exploitable remotely over the network in conjunction with a valid administrative Intel® Management Engine credential. The attacker needs this access to exploit the identified vulnerabilities by applying a malicious firmware image to the platform through a malicious platform driver. If the equipment manufacturer doesn't enable Intel-recommended Flash Descriptor write protections, an attacker needs Operating kernel access ( logical access, Operating System Ring 0). Flash Descriptor write-protection protects settings on the Flash from being maliciously or unintentionally changed after manufacturing is completed. Flash Descriptor write-protection is a platform setting usually set at the end of manufacturing. The attacker gains physical access by manually updating the platform with a malicious firmware image through a flash programmer physically connected to the platform’s flash memory. Q: What types of access would an attacker need to exploit the identified vulnerabilities?Ī: If the equipment manufacturer enables Intel-recommended Flash Descriptor write protections, an attacker needs physical access to platform’s firmware flash to exploit vulnerabilities identified in: If your manufacturer is not shown, contact them using their standard support mechanisms (website, phone, email, and so on) for assistance. What do I do?Ī: The list below shows links from system or motherboard manufacturers who have provided Intel with information. Q: My system or motherboard manufacturer is not shown in your list.
#INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP DRIVERS#
#INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP DRIVER#
Intel® Management Engine Interface (Intel® MEI) driver.
What do I do?Ī: A status of may be Vulnerable is usually seen when either of the following drivers aren't installed: Q: My system is reported as may be Vulnerable by the Intel CSME Version Detection Tool.
#INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP UPDATE#
Q: Why do I need to contact my system or motherboard manufacturer? Why can’t Intel provide the necessary update for my system?Ī: Intel is unable to provide a generic update due to management engine firmware customizations performed by system and motherboard manufacturers.
#INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP SOFTWARE#
Some manufacturers have provided Intel with a direct link for their customers to obtain additional information and available software updates (Refer to the list below).
What do I do?Ī: Intel has provided system and motherboard manufacturers with the necessary firmware and software updates to resolve the vulnerabilities identified in Security Advisory Intel-SA-00086.Ĭontact your system or motherboard manufacturer regarding their plans for making the updates available to end users. Q: The Intel CSME Version Detection Tool reports that my system is vulnerable.
#INTEL MANAGEMENT ENGINE DOWNLOAD LAPTOP SERIES#
You may find these firmware versions on certain processors from the: Systems using Intel ME Firmware versions 6.x-11.x, servers using SPS Firmware version 4.0, and systems using TXE version 3.0 are impacted. Intel has identified security vulnerabilities that could potentially impact certain PCs, servers, and IoT platforms.