Intel® Active Management Technology (Intel® AMT) and Intel® Converged Security and Management Engine

PatG · ‎03-31-2025

I was in my hardware properties today, looking at old USBs that Windows would not recognize, and when I saw the yellow triangle and exclamation on the processor chip. Upon investigating, I downloaded and ran the tool provided, and it stated that My Laptop is vulnerable, but I have not been able to locate any information on a fix for this, and Lenovo said I am out of warranty and they can't assist unless I fork up more than I already have.

System Model 21FA0026US
System Type x64-based PC
System SKU LENOVO_MT_21FA_BU_Think_FM_ThinkPad P16 Gen 2
Processor 13th Gen Intel(R) Core(TM) i9-13980HX, 2200 Mhz, 24 Core(s), 32 Logical Processor(s)
BIOS Version/Date LENOVO N3TET15W (1.02 ), 5/3/2023

Can someone just point me in the direction to be able to correct this? I am assuming it is probably a BIOS firmware update or something of that nature. Thank you

pressed_for_time · ‎03-31-2025

I ran version 12.0.1.0 of the Intel Converged Security and Management Engine (CSME) when it first came out in January and got the same result as you with a 14th gen Intel desktop CPU. Running it again a couple of weeks ago changed the message to one saying that the vulnerability had been patched and the system was no longer vulnerable. Running the latest (12.0.4.0) version of CSME generates the same message as what you are seeing.

In the gap between the two versions nothing was done in terms of BIOS updates, or ME firmware and driver updates. The Intel Bluetooth driver and Wi-Fi driver have both been updated to the latest 23.120.0 version but I don't think that is a factor. The only source of the patching would seem to be Windows 11 Pro itself, the most recent 24H2 release with the latest updates.

So I would assume that as happened before it is likely that at some point Windows will patch this vulnerability.