Unauthenticated Network-based Key Extraction Vulnerability in Intel Active Management Technology

Unauthenticated Network-based Key Extraction Vulnerability in Intel Active Management Technology

CVE-2018-3616 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

Learn more about our Network Penetration Testing.