KB Article | Forcepoint Support

Problem Description

KB 14933 provides a description of the Meltdown and Spectre Vulnerabilities CVE-2017-5715, CVE-2017-5753, CVE-2017-5754.
This article provides additional information specific to the NGFW Security Management Center (SMC) Appliance.
 
Vulnerability risk
 
The vulnerability allows local users with normal user privileges to read memory like root. Generally, in the SMC Appliance we do not have local users, apart from the administrators, who are already privileged users.
 
This is not a remote compromise against SMC Appliance. This vulnerability has no direct impact on the SMC and very little indirect impact.
 

Resolution

Information About Fixes
 
The following table displays the planned schedule for fixes:
 
 SMC Appliance 6.2SMC Appliance 6.3
CVE-2017-5715
Spectre
No fix plannedFix scheduled for 6.3.4 in February 2018
CVE-2017-5753
Spectre
No fix plannedFix scheduled for 6.3.4 in February 2018
CVE-2017-5754
Meltdown
No fix plannedFix scheduled for 6.3.4 in February 2018
 
If you are running the SMC Appliance image on VMware, be sure to apply the VMware patches as well.

Article Feedback



Thank you for the feedback and comments.

Want 24/7 Tech Support?

Learn more