What is the vulnerability CVE-2018-3657?

CVE-2018-3657 is a vulnerability in Intel AMT in Intel CSME firmware versions before version 12.0.5 that may potentially allow a privileged user to execute arbitrary code with Intel AMT execution privilege via local access.

How severe is CVE-2018-3657?

CVE-2018-3657 has a severity rating of 6.7 (high).

Which software versions are affected by CVE-2018-3657?

CVE-2018-3657 affects Intel CSME firmware versions before version 12.0.5 and Intel Active Management Technology Firmware versions up to version 12.0.5.

Are Siemens Simatic Field Pg M5, Simatic Ipc427e, Simatic Ipc477e, Simatic Ipc547e, Simatic Pc547g, Simatic Ipc627d, Simatic Ipc647d, Simatic Ipc677d, Simatic Ipc827d, Simatic Ipc847d, and Simatic Itp1000 affected by CVE-2018-3657?

No, Siemens Simatic Field Pg M5, Simatic Ipc427e, Simatic Ipc477e, Simatic Ipc547e, Simatic Pc547g, Simatic Ipc627d, Simatic Ipc647d, Simatic Ipc677d, Simatic Ipc827d, Simatic Ipc847d, and Simatic Itp1000 are not affected by CVE-2018-3657.

How can I fix CVE-2018-3657?

To fix CVE-2018-3657, it is recommended to update to Intel CSME firmware version 12.0.5 or later.

Vulnerability/
CVE-2018-3657

high

7.2

CWE

119

12/9/2018

16/9/2024

CVE-2018-3657: Buffer Overflow

First published: Wed Sep 12 2018(Updated: )

Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.

Credit: secure@intel.com secure@intel.com

Affected Software	Affected Version	How to fix
Siemens Simatic Field Pg M5 Firmware	<22.01.06
Siemens Simatic Field Pg M5
Siemens Simatic Ipc427e Firmware	<21.01.09
Siemens Simatic Ipc427e
Siemens Simatic Ipc477e Firmware	<21.01.09
Siemens Simatic Ipc477e
Siemens Simatic Ipc547e Firmware	<r1.30.0
Siemens Simatic Pc547e
Siemens Simatic Pc547g Firmware	<r1.23.0
Siemens Simatic Ipc547g
Siemens Simatic Ipc627d Firmware	<19.02.11
Siemens Simatic Ipc627d
Siemens Simatic Ipc647d Firmware	<19.01.14
Siemens Simatic Ipc647d
Siemens Simatic Ipc677d Firmware	<19.02.11
Siemens Simatic Ipc677d
Siemens Simatic Ipc827d Firmware	<19.02.11
Siemens Simatic Ipc827d
Siemens Simatic Ipc847d Firmware	<19.01.14
Siemens Simatic Ipc847d
Siemens Simatic Itp1000 Firmware	<23.01.04
Siemens Simatic Itp1000
Intel Converged Security Management Engine Firmware	>=11.0.0<12.0.5
Intel Active Management Technology Firmware	<12.0.5
Intel Manageability Engine Firmware	>=9.0.0.0<11.0

Remedy

https://cert-portal.siemens.com/productcert/pdf/ssa-377318.pdf

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability CVE-2018-3657?
CVE-2018-3657 is a vulnerability in Intel AMT in Intel CSME firmware versions before version 12.0.5 that may potentially allow a privileged user to execute arbitrary code with Intel AMT execution privilege via local access.
How severe is CVE-2018-3657?
CVE-2018-3657 has a severity rating of 6.7 (high).
Which software versions are affected by CVE-2018-3657?
CVE-2018-3657 affects Intel CSME firmware versions before version 12.0.5 and Intel Active Management Technology Firmware versions up to version 12.0.5.
Are Siemens Simatic Field Pg M5, Simatic Ipc427e, Simatic Ipc477e, Simatic Ipc547e, Simatic Pc547g, Simatic Ipc627d, Simatic Ipc647d, Simatic Ipc677d, Simatic Ipc827d, Simatic Ipc847d, and Simatic Itp1000 affected by CVE-2018-3657?
No, Siemens Simatic Field Pg M5, Simatic Ipc427e, Simatic Ipc477e, Simatic Ipc547e, Simatic Pc547g, Simatic Ipc627d, Simatic Ipc647d, Simatic Ipc677d, Simatic Ipc827d, Simatic Ipc847d, and Simatic Itp1000 are not affected by CVE-2018-3657.
How can I fix CVE-2018-3657?
To fix CVE-2018-3657, it is recommended to update to Intel CSME firmware version 12.0.5 or later.

collector/nvd-api
collector/nvd-index
agent/weakness
agent/references
agent/severity
agent/author
agent/type
agent/description
agent/event
agent/softwarecombine
agent/first-publish-date
agent/remedy
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/siemens
canonical/siemens simatic field pg m5 firmware
canonical/siemens simatic field pg m5
canonical/siemens simatic ipc427e firmware
canonical/siemens simatic ipc427e
canonical/siemens simatic ipc477e firmware
canonical/siemens simatic ipc477e
canonical/siemens simatic ipc547e firmware
canonical/siemens simatic pc547e
canonical/siemens simatic pc547g firmware
canonical/siemens simatic ipc547g
canonical/siemens simatic ipc627d firmware
canonical/siemens simatic ipc627d
canonical/siemens simatic ipc647d firmware
canonical/siemens simatic ipc647d
canonical/siemens simatic ipc677d firmware
canonical/siemens simatic ipc677d
canonical/siemens simatic ipc827d firmware
canonical/siemens simatic ipc827d
canonical/siemens simatic ipc847d firmware
canonical/siemens simatic ipc847d
canonical/siemens simatic itp1000 firmware
canonical/siemens simatic itp1000
vendor/intel
canonical/intel converged security management engine firmware
version/intel converged security management engine firmware/11.0.0
canonical/intel active management technology firmware
canonical/intel manageability engine firmware
version/intel manageability engine firmware/9.0.0.0