CVE-2013-5740

Severity Score

6.9

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Unspecified vulnerability in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment (MLE) is invoked, allows local users to bypass the Trusted Execution Technology protection mechanism and perform other unspecified SINIT ACM functions via unspecified vectors.

Vulnerabilidad no especificada en Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) anteriores a v1.2, usados por Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, y C206 chipsets y Mobile Intel QM67 y QS67 chipsets, cuando el measured launch environment (MLE) es invocado, permite a usuarios locales saltarse el mecanismo de protección (Trusted Execution Technology) y llevar a cabo otras funciones SINIT ACM no especificadas a través de vectores no especificados.

*Credits: N/A

CVSS Scores

NISTv2 6.9

Attack Vector

Local

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2013-09-12 CVE Reserved
2013-09-12 CVE Published
2023-09-11 EPSS Updated
2024-09-16 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (2)

URL	Tag	Source
http://support.citrix.com/article/CTX138633	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00035&languageid=en-fr	2014-07-11

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Intel Search vendor "Intel"		C202 Chipset Search vendor "Intel" for product "C202 Chipset"				-		-		Affected
Intel Search vendor "Intel"		C204 Chipset Search vendor "Intel" for product "C204 Chipset"				-		-		Affected
Intel Search vendor "Intel"		C206 Chipset Search vendor "Intel" for product "C206 Chipset"				-		-		Affected
Intel Search vendor "Intel"		C216 Chipset Search vendor "Intel" for product "C216 Chipset"				-		-		Affected
Intel Search vendor "Intel"		Mobile Intel Qm67 Chipset Search vendor "Intel" for product "Mobile Intel Qm67 Chipset"				-		-		Affected
Intel Search vendor "Intel"		Mobile Intel Qs67 Chipset Search vendor "Intel" for product "Mobile Intel Qs67 Chipset"				-		-		Affected
Intel Search vendor "Intel"		Q67 Express Chipset Search vendor "Intel" for product "Q67 Express Chipset"				-		-		Affected
Intel Search vendor "Intel"		Qm77 Chipset Search vendor "Intel" for product "Qm77 Chipset"				-		-		Affected
Intel Search vendor "Intel"		Qs77 Chipset Search vendor "Intel" for product "Qs77 Chipset"				-		-		Affected
Intel Search vendor "Intel"		Qs77 Chipset Search vendor "Intel" for product "Qs77 Chipset"				-		express		Affected
Intel Search vendor "Intel"		Trusted Execution Technology Sinit Authenticated Code Module Search vendor "Intel" for product "Trusted Execution Technology Sinit Authenticated Code Module"				<= 1.1 Search vendor "Intel" for product "Trusted Execution Technology Sinit Authenticated Code Module" and version " <= 1.1"		-		Affected