Intel’s Management Engine has a vulnerability that could allow an attacker to own your entire system. Intel admits that if the “management” Ethernet port is available, attackers may be able to combine older vulnerabilities with the new weaknesses to access the ME/AMT components without having to be directly on the attacked systems. Intel’s strategy for mitigation here is to let the manufacturers come up with patches for their own machines. The only other option is to buy all new machines, which you hope have been factory fixed before you buy them.”]
Source: https://www.darkreading.com/abtv/intel-management-engine-has-a-big-problem/a/d-id/738584