{"api_version":"1","generated_at":"2026-04-23T18:03:12+00:00","cve":"CVE-2017-5684","urls":{"html":"https://cve.report/CVE-2017-5684","api":"https://cve.report/api/cve/CVE-2017-5684.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2017-5684","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2017-5684"},"summary":{"title":"CVE-2017-5684","description":"The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version CC047 may allow an attacker with physical access to the system to gain access to personal information.","state":"PUBLIC","assigner":"secure@intel.com","published_at":"2017-04-03 21:59:00","updated_at":"2019-10-03 00:03:00"},"problem_types":["CWE-276"],"metrics":[],"references":[{"url":"https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00073&languageid=en-fr","name":"https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00073&languageid=en-fr","refsource":"CONFIRM","tags":["Vendor Advisory"],"title":"Intel® Product Security Center","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2017-5684","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5684","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2017","cve_id":"5684","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"intel","cpe5":"stk2mv64cc","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"5684","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"intel","cpe5":"stk2mv64cc","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2017","cve_id":"5684","vulnerable":"1","versionEndIncluding":"ccsklm5v.86a.0046.2017.0105.1608","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"intel","cpe5":"stk2mv64cc_bios","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"secure@intel.com","ID":"CVE-2017-5684","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Intel Compute Stick STK2MV64CC","version":{"version_data":[{"version_value":"Before CC047"}]}}]},"vendor_name":"Intel"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version CC047 may allow an attacker with physical access to the system to gain access to personal information."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Information Disclosure"}]}]},"references":{"reference_data":[{"name":"https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00073&languageid=en-fr","refsource":"CONFIRM","url":"https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00073&languageid=en-fr"}]}},"nvd":{"publishedDate":"2017-04-03 21:59:00","lastModifiedDate":"2019-10-03 00:03:00","problem_types":["CWE-276"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.0","vectorString":"CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":3.9,"baseSeverity":"LOW"},"exploitabilityScore":0.3,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":2.1},"severity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:intel:stk2mv64cc_bios:*:*:*:*:*:*:*:*","versionEndIncluding":"ccsklm5v.86a.0046.2017.0105.1608","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":{"CveYear":"2017","CveId":"5684","Ordinal":"102266","Title":"CVE-2017-5684","CVE":"CVE-2017-5684","Year":"2017"},"notes":[{"CveYear":"2017","CveId":"5684","Ordinal":"1","NoteData":"The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version CC047 may allow an attacker with physical access to the system to gain access to personal information.","Type":"Description","Title":null},{"CveYear":"2017","CveId":"5684","Ordinal":"2","NoteData":"2017-04-03","Type":"Other","Title":"Published"},{"CveYear":"2017","CveId":"5684","Ordinal":"3","NoteData":"2017-04-03","Type":"Other","Title":"Modified"}]}}}