Skip to main content

Intel Releases Security Update for CSME

Intel have released an update to address a vulnerability in their Converged Security Manageability Engine (CSME, also known as ME). An unauthenticated local attacker could exploit this vulnerability to gain access to or alter security keys.
Threat ID:
CC-2676
Category:
Threat Severity:
Low
Threat Vector:
Published:
19 September 2018 12:00 AM
Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Intel have released an update to address a vulnerability in their Converged Security Manageability Engine (CSME, also known as ME). An unauthenticated local attacker could exploit this vulnerability to gain access to or alter security keys.

Threat details

Remediation steps

Type Step
Users and administrators are encouraged to review Intel security advisory INTEL-SA-00125 and apply the necessary updates.

Last edited: 17 February 2020 12:45 pm