KB Article | Forcepoint Support

Problem Description

​Forcepoint is aware of the vulnerabilities and will release more information as it becomes available.
Forcepoint is currently assessing the impact and timing of fixes and will review updates as they are released by various vendors. 

 

Notes & Warnings

Published Date: January 8, 2018
Last Update: January 8, 2018
KBA Status: Released
KBA Severity: Medium
CVE Numbers: CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

KBA Summary
Forcepoint is aware of the vulnerabilities and will release more information as it becomes available.
The recent vulnerability announcements regarding Spectre and Meltdown are not remotely exploitable against Forcepoint products.
Forcepoint is currently assessing the impact and timing of fixes and will review updates as they are released by various vendors.

Products Under Review
Forcepoint Advanced Malware Detection - On Premises - Manager Server
Forcepoint Advanced Malware Detection - On Premises - Engine Server

Forcepoint Web Security Cloud
Forcepoint Web Security (
https://support.forcepoint.com/KBArticle?id=000014948)
Forcepoint Email Security
Forcepoint Email Security Cloud
Forcepoint DLP
Forcepoint DLP Protector
Forcepoint DLP Mobile Agent
Forcepoint DLP Endpoint
Forcepoint Mobile Security
Forcepoint NGFW (
https://support.forcepoint.com/KBArticle?id=000014989)
Forcepoint SMC Appliances (https://support.forcepoint.com/KBArticle?id=000014991)
V-Series Appliances (https://support.forcepoint.com/KBArticle?id=000015000)
X-Series Appliances(https://support.forcepoint.com/KBArticle?id=000015000)
I-Series Appliances
Sidewinder (
https://support.forcepoint.com/KBArticle?id=000014992)
Forcepoint M10000C G1 Appliance
Forcepoint M5000C G1 Appliance
Forcepoint M7500C G1 Appliance
Forcepoint M5000BA G1 Appliance
Forcepoint M5000BB G1 Appliance
Forcepoint M5000M G1 Appliance

SureView Insider Threat Z20000 G1 Appliance
SureView Insider Threat Z10000 G1 Appliance
SureView Insider Threat Z5000 G1 Appliance
SureView Insider Threat Z50000 G1 Server Set
SureView Insider Threat Z2500 G1 Appliance
SureView Insider Threat Storage Array 30TB
SureView Insider Threat Storage Array 60TB
SureView Insider Threat Storage Array 110TB


Affected Products
All
 
The vulnerability for products installed as software on customer hardware and virtual appliances depends on the hardware and OS or Hypervisor installed and maintained by the customer. Customers should work with their hardware and OS/Hypervisor vendors to determine vulnerability status.

Not Vulnerable
TBD
 
KBA Detailed Information
 
CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
   
CVE-2017-5753
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
 
CVE-2017-5754
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
 
For additional information, see the following:
https://access.redhat.com/security/vulnerabilities/speculativeexecution
https://support.microsoft.com/en-us/help/4072698/windows-server-guidance-to-protect-against-the-speculative-execution
https://access.redhat.com/security/cve/cve-2017-5715
https://access.redhat.com/security/cve/CVE-2017-5753
https://access.redhat.com/security/cve/CVE-2017-5754
https://blogs.forcepoint.com/security-labs/looming-spectre-meltdown

CVE References
CVE-2017-5715 - https://nvd.nist.gov/vuln/detail/CVE-2017-5715
CVE-2017-5753 - https://nvd.nist.gov/vuln/detail/CVE-2017-5753
CVE-2017-5754 - https://nvd.nist.gov/vuln/detail/CVE-2017-5754


 

Article Feedback



Thank you for the feedback and comments.