Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page.
References
Link | Resource |
---|---|
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00081&languageid=en-fr | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-06-14 05:29
Updated : 2017-06-27 10:32
NVD link : CVE-2017-5697
Mitre link : CVE-2017-5697
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
intel
- active_management_technology_firmware