Intel has released recommendations to address a vulnerability in the firmware of the following Intel products: Active Management Technology, Standard Manageability, and Small Business Technology firmware versions 6.x, 7.x, 8.x, 9.x, 10.x, 11.0, 11.5, and 11.6. This vulnerability does not affect Intel-based consumer PCs. An attacker could exploit this vulnerability to take control of an affected system.
Users and administrators are encouraged to review Intel Security Advisory INTEL-SA-00075 and updated mitigations and tools:
- Mitigation Guide v1.2 (May 5, 2017)
- Discovery Tool v1.0.1.6 (May 5, 2017)
- Unprovisioning Tool v1.0 (May 6, 2017)
US-CERT recommends users and administrators review Vulnerability Note VU#491375 for additional information and refer to their original equipment manufacturer (OEM) for updated firmware.