A vulnerability has been found in Intel Active Management Technology up to 12.0.4 and classified as critical. This vulnerability affects an unknown function of the component TLS. The manipulation with an unknown input leads to a cryptographic issues vulnerability (Bleichenbacher). The CWE definition for the vulnerability is CWE-310. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

The bug was discovered 09/11/2018. The weakness was published 09/12/2018 (Website). The advisory is available at intel.com. This vulnerability was named CVE-2018-3616 since 12/27/2017. The exploitation appears to be difficult. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1600 by the MITRE ATT&CK project.

The vulnerability was handled as a non-public zero-day exploit for at least 1 days. During that time the estimated underground price was around $5k-$25k.

Upgrading to version 12.0.5 eliminates this vulnerability.

Productinfo

Vendor

• Intel

Name

• Active Management Technology

Version

• 12.0.0
• 12.0.1
• 12.0.2
• 12.0.3
• 12.0.4

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion