05-02-2017 10:12 AM
Lenovo, what is the ETA for the AMT/vPro vulnerability fixes as per recent news?
INTEL-SA-00075 Detection Guide
Specifically, according to Intel:
- An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM).
- An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).
(from The Register)
I see the 2nd gen X-Series just got a ME firmware update but it is the non-patched version as the build versions are less than 3000. For our 4th, 3rd and 2nd gen X-Series we're looking for this versions:
4-gen Core family / 2nd Gen X-Series: 22.214.171.12412 (current 126.96.36.1992)
5-gen Core family / 3rd Gen X-Series: 10.0.55.3000 (current 10.0.50.1004)
6-gen Core family / 4th Gen X-Series: 188.8.131.5201/184.108.40.20664 (current 220.127.116.119)
It is very encouraging that Lenovo still provides ME updates so hopefully we can get the above patched versions soon.
05-02-2017 03:46 PM
Please see: https://support.lenovo.com/eg/en/product_security/len-14963 for more information.
05-02-2017 06:10 PM
i know a w510 is old and its not on the list. If i disable AMT and VT in the BIOS would that help with this issue?
If a post answers your question, please mark it as an”Accepted Solution“!
If a post helps you, please click the star to give it a "Kudo"!
I do not work for, nor do I speak for Lenovo. I will not respond to unsolicited private messages. Questions belong in the forum so it may help other forum members as well.
T490, TP 25 Retro, X1 Yoga 3rd Gen, W510 850 EVO, A30p
Retired 385D, A20p, A21p
05-04-2017 03:53 PM
05-15-2017 08:03 AM
Where can we get latest ETA for BIOS/UEFI fix?