3rd party component upgrade required for security reasons: [Firmware] Intel-SA-00086 Security Review Cumulative Update Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-17-271 Final 1 1 2018-01-04T00:00:00 Current version 2018-01-04T00:00:00 2018-01-04T00:00:00 Intel recently released a security update (Intel-SA-00086), regarding Intel ME 11.x, SPS 4.0, and TXE 3.0 intel products.The following Firmware are impacted:Intel Management Engine (ME) Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20Intel Server Platform Services (SPS) Firmware version 4.0Intel Trusted Execution Engine (TXE) version 3.0And the following Intel products are affected:6th, 7th & 8th Generation Intel Core Processor FamilyIntel Xeon Processor E3-1200 v5 & v6 Product FamilyIntel Xeon Processor Scalable FamilyIntel Xeon Processor W FamilyIntel Atom C3000 Processor FamilyApollo Lake Intel Atom Processor E3900 seriesApollo Lake Intel PentiumCeleron N and J series ProcessorsAn attacker could gain unauthorized access to the platform, the Intel ME feature, and 3rd party secrets protected by the Intel Management Engine (ME), the Intel Server Platform Service (SPS), or the Intel Trusted Execution Engine (TXE).This includes scenarios where a successful attacker could Impersonate the ME/SPS/TXE, thereby impacting local security feature attestation validity. Concrete impact may be "load and execute arbitrary code outside the visibility of the user and operating system", or "system crash or system instability".The assigned CVEs are:CVEs:Intel Manageability Engine Firmware 11.0.x.x/11.5.x.x/11.6.x.x/11.7.x.x/11.10.x.x/11.20.x.xCVE-2017-5705CVE-2017-5708CVE-2017-5711CVE-2017-5712Intel Manageability Engine Firmware 8.x/9.x/10.xCVE-2017-5711CVE-2017-5712Server Platform Service 4.0.x.xCVE-2017-5706CVE-2017-5709IntelTrusted Execution Engine 3.0.x.xCVE-2017-5707CVE-2017-5710 Escalation of privilege FortiGate model FGT-500E, FGT-501E, affected, but not exploitable under regular functioning conditions (see Solutions below).FortiWeb model FWB-1000E has a processor running a firmware affected by the issue, but the vulnerable functions were never enabled.The following products are NOT impacted:FortiAP FortiSwitchFortiAnalyzerFortiMailFortiManager Note that all related CVEs are "Privilege Escalation" type vulnerabilities. Arbitrary code execution is therefore only possible on the aforementioned products if the attack is combined with a local or remote code execution vulnerability (unrelated to intel issues) in the affected products. The Intel CVEs only aggravate the situation, if such vulnerabilities exist. Based on the above, the impact to Fortinet products is low to "nonexistent".* For FortiWeb 1000E, the affected firmware has undergone a precaution patching, in system BIOS PN P21583-02: New units will run a non-affected firmware. There is no firmware upgrade needed for existing units, however (see above: vulnerable functions not enabled).For FortiGate 500E and 501E, the affected firmware has been patched under FortiBIOS version 05000003: new units will run a non-affected firmware.For existing units, the exploitation risk is low, as an attack may only be possible if combined with an additional local or remote code execution vulnerability, unrelated to this issue - if such vulnerabilities exist and are successfully exploited.To lower your attack risk and reduce the possibility of an "already existing local or remote code execution vulnerability" (as referred to above), upgrading to our latest publicly available software version is highly recommended.Please contact your local TAC for more information or request for BIOS update.Update History:01-04-2018 Initial version01-18-2018 Assessment and Solution updated https://fortiguard.fortinet.com/psirt/FG-IR-17-271 3rd party component upgrade required for security reasons: [Firmware] Intel-SA-00086 Security Review Cumulative Update https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr 0 https://fortiguard.fortinet.com/psirt/FG-IR-17-271 3rd party component upgrade required for security reasons: [Firmware] Intel-SA-00086 Security Review Cumulative Update Reference> https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr