Intel® Firmware vulnerability INTEL-SA-00086
The information below includes a description of the vulnerability and details the steps recommended by Intel® and Fujitsu that users should take to remediate affected products.
Vulnerability Summary:
In response to issues identified by external researchers, Intel® has performed an in-depth comprehensive security review of its Intel® Management Engine (ME), Intel® Trusted Execution Engine (TXE), and Intel® Server Platform Services (SPS) with the objective of enhancing firmware resilience.
As a result, Intel® has identified several security vulnerabilities that could potentially place impacted platforms at risk. Systems using ME Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20, SPS Firmware version 4.0, and TXE version 3.0 are impacted. Fujitsu and Intel® highly recommend that all customers install updated firmware and Intel® Capability License Service on impacted platforms.
Details about the vulnerability:
A vulnerability could allow an attacker to perform the following attacks:
- Impersonate the ME/SPS/TXE, thereby impacting the validity of local security features.
- Load and execute arbitrary code outside the visibility of the user and operating system.
- Cause a system crash or system instability.
For more detailed information, and the Intel® CSME Version Detection Tool, please refer to Intel® Management Engine Critical Firmware Update (Intel-SA-00086)
Recommended steps:
- It is necessary to update the BIOS or firmware, and Intel® driver software.
- Consult the list of affected Fujitsu systems for the timing of BIOS, firmware and driver availability.
- To download the respective updates for your system, please go to the Fujitsu Support page and perform the following steps:
- Select Product.
- Select Series.
- Select Model.
- Press Go.
- Download and install the latest BIOS update package.
Affected Products:
A number of Fujitsu products are affected by these vulnerabilities. Fujitsu is working to distribute patches for all affected products that are currently supported. Older systems that are no longer supported will not be patched.
An overview of the affected Client Computing Devices can be found here:
| Model Name | Update Type | Release Date1 | Intel(R) Active Management Technology Driver V11.7.0.1043 64-bit | Intel(R) Management Engine Interface Driver V11.7.0.1043 64-bit |
|---|---|---|---|---|
| LIFEBOOK E557
LIFEBOOK E547 | BIOS | Released Jan 2018
vPro V1.13 non-vPro V1.09 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK U937 | BIOS | Released Jan 2018
V1.10 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK P727 | BIOS | Released Jan 2018
V1.12 | Released Jan 2018 | Released Jan 2018 |
| STYLISTIC Q737 | BIOS | Released Jan 2018
V1.11 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK T937 | BIOS | Released Jan 2018
V1.13 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK U727
LIFEBOOK U747 LIFEBOOK U757 | BIOS | Released Jan 2018
V1.18 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK U727 6th Gen
LIFEBOOK U747 6th Gen LIFEBOOK U757 6th Gen | BIOS | Released Jan 2018
V1.18 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK E556
LIFEBOOK E546 | BIOS | Released Jan 2018
vPro V1.18 non-vPro V1.25 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK E756
LIFEBOOK E746 LIFEBOOK E736 | BIOS | Released Jan 2018
vPro V1.21 non-vPro V1.27 | Released Jan 2018 | Released Jan 2018 |
| STYLISTIC Q736 | BIOS | Released Jan 2018
V1.15 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK T726 | BIOS | Released Jan 2018
V1.15 | Released Jan 2018 | Released Jan 2018 |
| LIFEBOOK T936 | BIOS | Released Jan 2018
V1.14 | Released Jan 2018 | Released Jan 2018 |
| STYLISTIC Q616 | BIOS | Released Jan 2018
V1.14 | Released Jan 2018 | Released Jan 2018 |
| STYLISTIC R726 | BIOS | Released Jan 2018
V1.18 | Released Jan 2018 | Released Jan 2018 |
| STYLISTIC Q775 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T725 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T935 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK U745 | MEFW Tool | Released Jan 2018 | ||
| STYLISTIC Q665 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK E754
LIFEBOOK E744 LIFEBOOK E734 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK S904 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK U904 | MEFW Tool | Released Jan 2018 | ||
| STYLISTIC Q704 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T734 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T904 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK E752
LIFEBOOK E782 LIFEBOOK S752 LIFEBOOK S782 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK S762 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK E733
LIFEBOOK E753 LIFEBOOK E743 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK P772 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK U772 | MEFW Tool | Released Jan 2018 | ||
| STYLISTIC Q702 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T902 | MEFW Tool | Released Jan 2018 | ||
| LIFEBOOK T732 | MEFW Tool | Released Jan 2018 | ||
| 1. Dates are subject to change | ||||
* Please note that this information is subject to change without any prior notice.