Skip to Content
This is the latest documentation for BMC Helix Network Management (formerly known as Netreo).

 

Is there any exposure to the Intel AMT/ISM exploit?

Short Answer

No. BMC Helix Network Management is NOT vulnerable to this exploit.

In May 2017, a security vulnerability CVE-2017-5689 was disclosed that affects Intel-based hardware systems running Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

Exploiting this vulnerability means that an unprivileged local attacker could provision manageability features, gaining unprivileged network or local system privileges on affected systems.

Although some versions of the BMC Helix Network Management hardware appliance use Intel processors, BMC Helix Network Management is not vulnerable to this exploit. BMC Helix Network Management appliances shipped in the last 5 years use processors and firmware that are not affected by this problem.

BMC Helix Network Management appliances installed as Virtual Appliances are not specifically affected as the issue in question only occurs at the hardware level. However, we recommend that customers using Intel-based hardware in their virtualization environment check their hardware platforms to make sure that they are not affected by this vulnerability using the resources provided by Intel here.

If you have any concerns, please feel free to contact BMC Helix Support.

 

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Helix Network Management