1 2 3 4 5 6 7 8 9 10
Third-Party-Whitepapers_Icon datasheet smart-tv white-papers videos tech-notes solution-briefs infographics case-studies brochures awards reviews podcasts guides

Forescout

Feb 8, 2018

Update on Meltdown and Spectre CPU Vulnerabilities

Applicable Products:

Products applicable to this communication are as follows:
  • CounterACT appliances running on CounterACT Service Pack v3.0.x.
  • For Customers on versions of Service Packs earlier than 3.0.x, we are working on a package and will notify you once it is available.

Background:

A group of researchers have disclosed vulnerabilities impacting CPUs of over two dozen manufacturers, including Intel, AMD and ARM. The vulnerabilities known as Spectre and Meltdown take advantage of a feature in chips known as speculative execution. Several vulnerabilities, as identified by the following CVEs, were found to be affecting all modern Intel CPUs:

  • CVE-2017-5753 (Spectre) – Variant #1
  • CVE-2017-5715 (Spectre) – Variant #2
  • CVE-2017-5754 (Meltdown) – Variant #3

Resolutions for CounterACT:

We are releasing CounterACT Operating Systems Update Pack v1.2.2.2. This version addresses Variant #1 and Variant #3. The update is available and can be utilized by customers that are already running CounterACT Service Pack 3.0.1.

Customers on Service Pack 3.0.0 are strongly encouraged to upgrade to Service Pack 3.0.1 and apply the updated version of the CounterACT Operating Systems Update. Instructions to update to Service Pack 3.0.1 is available in the accompanying release notes.

For customers on versions earlier than CounterACT Service Pack 3.0.0 we are diligently working on a fix for Service Pack version 2.3.4 and will notify you as soon as a solution is available. In the interim, to mitigate exposure, Forescout recommends that organizations review access rights to CounterACT appliances and ensure that access is limited only to trusted administrators from trusted networks or hosts.

For additional information, please refer to KnowledgeBase Articles #5012, #5032, and #5055 which can be accessed via support.forescout.com using your login credentials. The KnowledgeBase articles also have links to the Forescout Security Advisory for your reference.

In case of any questions please contact [email protected] this Alert in whole or in part is strictly forbidden.

Legal Disclaimer

THIS NOTIFICATION IS PROVIDED ON AN “AS IS” BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION IN THIS ALERT OR MATERIALS LINKED FROM THIS ALERT IS AT YOUR OWN RISK. FORESCOUT RESERVES THE RIGHT TO CHANGE OR UPDATE THIS ALERT AT ANY TIME.

© 2018. Forescout Technologies, Inc. is a privately held Delaware corporation. Forescout, the Forescout logo, ControlFabric, CounterACT Edge, ActiveResponse and CounterACT (as applicable) are trademarks or registered trademarks of Forescout. Other names mentioned may be trademarks of their respective owners.

Back to Resources
Announcement Archive

Contact Us

Toll-Free (US): 1-866-377-8771
Tel (Intl): +1-408-213-3191
Support: +1-708-237-6591

Headquarters
190 W Tasman Dr.
San Jose, CA, USA 95134