Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page.
References
Link | Resource |
---|---|
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00081&languageid=en-fr | Vendor Advisory |
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00081&languageid=en-fr | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:28
Type | Values Removed | Values Added |
---|---|---|
References | () https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00081&languageid=en-fr - Vendor Advisory |
26 Jan 2024, 18:02
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1021 | |
CPE | cpe:2.3:o:intel:active_management_technology_firmware:9.5:*:*:*:*:*:*:* cpe:2.3:o:intel:active_management_technology_firmware:10.0:*:*:*:*:*:*:* cpe:2.3:o:intel:active_management_technology_firmware:11.0:*:*:*:*:*:*:* cpe:2.3:o:intel:active_management_technology_firmware:11.6:*:*:*:*:*:*:* |
cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:* |
Information
Published : 2017-06-14 12:29
Updated : 2024-11-21 03:28
NVD link : CVE-2017-5697
Mitre link : CVE-2017-5697
CVE.ORG link : CVE-2017-5697
JSON object : View
Products Affected
intel
- active_management_technology_firmware
CWE
CWE-1021
Improper Restriction of Rendered UI Layers or Frames