Related Vulnerabilities: CVE-2018-3615 CVE-2018-3620 CVE-2018-3646

5On August 14th, 2018, three vulnerabilities were disclosed by Intel and security researchers that leverage a speculative execution side-channel method referred to as L1 Terminal Fault (L1TF) that affects modern Intel microprocessors. These vulnerabilities could allow an unprivileged, local attacker, in specific circumstances, to read privileged memory belonging to other processes. The first vulnerability, CVE-2018-3615, affects Intel SGX technology and is referred to by the researchers who discovered it as foreshadow. This vulnerability is not known to affect any Cisco devices as the Cisco devices do not utilize Intel SGX technology. The second vulnerability, CVE-2018-3620, and the third vulnerability, CVE-2018-3646, are referred to as L1 Terminal Fault attacks by Intel. These two vulnerabilities affect multi-core processors that leverage Intel Hyper-Threading technology supporting Operating System, System Management Mode, and Virtualized workloads. Like the previously disclosed Spectre vulnerabilities, all three new vulnerabilities leverage cache-timing attacks to infer any disclosed data. To exploit any of these vulnerabilities, an attacker must be able to run crafted or script code on an affected device. Although the underlying CPU and operating system combination in a product or service may be affected by these vulnerabilities, the majority of Cisco products are closed systems that do not allow customers to run custom code and are, therefore, not vulnerable. There is no vector from which to exploit them. Cisco products are considered potentially vulnerable only if they allow customers to execute custom code side-by-side with Cisco code on the same microprocessor. A Cisco product that may be deployed as a virtual machine or a container, even while not directly affected by any of these vulnerabilities, could be targeted by such attacks if the hosting environment is vulnerable. Cisco recommends that customers harden their virtual environments, tightly control user access, and ensure that all security updates are installed. Customers who are deploying products as a virtual device in multi-tenant hosting environments should ensure that the underlying hardware, as well as the operating system or hypervisor, is patched against the vulnerabilities in question. Although Cisco cloud services are not directly affected by these vulnerabilities, the infrastructure on which they run may be impacted. See the Affected Products section of this advisory for information about the impact of these vulnerabilities on Cisco cloud services. Cisco will release software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel

Source

Summary

5On August 14th, 2018, three vulnerabilities were disclosed by Intel and security researchers that leverage a speculative execution side-channel method referred to as L1 Terminal Fault (L1TF) that affects modern Intel microprocessors. These vulnerabilities could allow an unprivileged, local attacker, in specific circumstances, to read privileged memory belonging to other processes.
The first vulnerability, CVE-2018-3615, affects Intel SGX technology and is referred to by the researchers who discovered it as foreshadow. This vulnerability is not known to affect any Cisco devices as the Cisco devices do not utilize Intel SGX technology.

The second vulnerability, CVE-2018-3620, and the third vulnerability, CVE-2018-3646, are referred to as L1 Terminal Fault attacks by Intel. These two vulnerabilities affect multi-core processors that leverage Intel Hyper-Threading technology supporting Operating System, System Management Mode, and Virtualized workloads. Like the previously disclosed Spectre vulnerabilities, all three new vulnerabilities leverage cache-timing attacks to infer any disclosed data.

To exploit any of these vulnerabilities, an attacker must be able to run crafted or script code on an affected device. Although the underlying CPU and operating system combination in a product or service may be affected by these vulnerabilities, the majority of Cisco products are closed systems that do not allow customers to run custom code and are, therefore, not vulnerable. There is no vector from which to exploit them. Cisco products are considered potentially vulnerable only if they allow customers to execute custom code side-by-side with Cisco code on the same microprocessor.

A Cisco product that may be deployed as a virtual machine or a container, even while not directly affected by any of these vulnerabilities, could be targeted by such attacks if the hosting environment is vulnerable. Cisco recommends that customers harden their virtual environments, tightly control user access, and ensure that all security updates are installed. Customers who are deploying products as a virtual device in multi-tenant hosting environments should ensure that the underlying hardware, as well as the operating system or hypervisor, is patched against the vulnerabilities in question.

Although Cisco cloud services are not directly affected by these vulnerabilities, the infrastructure on which they run may be impacted. See the Affected Products section of this advisory for information about the impact of these vulnerabilities on Cisco cloud services.

Cisco will release software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel

Affected Products

Any product or service not listed in the Vulnerable Products section of this advisory is to be considered not vulnerable. The criteria for considering whether a product is vulnerable is explained in the Summary section of this advisory.

Because this is an ongoing investigation, please be aware that products and services currently considered not vulnerable may subsequently be considered vulnerable as additional information becomes available.

Products Under Investigation

The following products are under active investigation to determine whether they are affected by the vulnerability that is described in this advisory:

Network Application, Service, and Acceleration

Cisco Virtual Wide Area Application Services (vWAAS)
Cisco Wide Area Application Services (WAAS) Express
Cisco Wide Area Application Services (WAAS) Software

Network and Content Security Devices

Cisco FireSIGHT System

Routing and Switching - Enterprise and Service Provider

Cisco ASR 9000 XR 64-bit Series Routers
Cisco Industrial Ethernet 4000 Series Switches (IOx feature)
Cisco NCS 1000 Series Routers
Cisco NCS 5000 Series Routers
Cisco NCS 5500 Series Routers
Cisco XRv 9000 Series Routers

Vulnerable Products

Product	Cisco Bug ID	Fixed Release Availability
Network Application, Service, and Acceleration
Cisco Cloud Services Platform 2100	CSCvm02914
Routing and Switching - Enterprise and Service Provider
Cisco 4000 Series Integrated Services Routers (IOS XE Open Service Containers)	CSCvm02977
Cisco ASR 1000 Series Aggregation Services Router with RP2 or RP3 (IOS XE Open Service Containers)	CSCvm02977
Cisco ASR 1001-HX Series Aggregation Services Routers (IOS XE Open Service Containers)	CSCvm02977
Cisco ASR 1001-X Series Aggregation Services Routers (IOS XE Open Service Containers)	CSCvm02977
Cisco ASR 1002-HX Series Aggregation Services Routers (IOS XE Open Service Containers)	CSCvm02977
Cisco ASR 1002-X Series Aggregation Services Routers (IOS XE Open Service Containers)	CSCvm02977
Cisco Cloud Services Router 1000V Series (IOS XE Open Service Containers)	CSCvm02977
Cisco Nexus 3000 Series Switches	CSCvm02926
Cisco Nexus 3500 Series Switches	CSCvm02929
Cisco Nexus 5000 Series Switches	CSCvm02930
Cisco Nexus 7000 Series Switches	CSCvm02924
Cisco Nexus 9000 Series Switches - Standalone, NX-OS mode	CSCvm02926
Unified Computing
Cisco C880 M4 Server	CSCvm02911
Cisco C880 M5 Server	CSCvm02911
Cisco Enterprise NFV Infrastructure Software (NFVIS)	CSCvm02987
Cisco HyperFlex System	CSCvm02920
Cisco UCS B-Series M2 Blade Servers	CSCvm02934	Cisco UCS B-Series M2 Blade Servers - Managed UCS Manager 2.2(8l) - (Available) UCS Manager 3.2(3g) - (Available) Cisco UCS C-Series M2 Rack Servers - Managed UCS Manager 2.2(8l) - (Available) Cisco IMC 1.4(3z09)(Available) Cisco IMC 1.5(9f)(Available)
Cisco UCS B-Series M3 Blade Servers - Managed	CSCvm03356	Cisco UCS B-Series M3 Blade Servers - Managed UCS Manager 2.2(8l) (Available) UCS Manager 3.1(3j) (Available) UCS Manager 3.2(3g) (Available) UCS C-Series M3 Rack Servers - Managed UCS Manager 3.2(3g) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco IMC 3.0(4i) - (Available) Cisco IMC 2.0(9o) - (Available)
Cisco UCS B-Series M4 Blade Servers (except B260, B460)	CSCvm03351	Cisco UCS B-Series M4 Blade Servers (except B260 B460) UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage Server - UCS Manager 3.1(3j) - (Available) Cisco UCS C-Series M4 Rack Servers Cisco IMC 3.0(4e) - (Available) Cisco IMC 2.0(10k) - (Available) Cisco UCS S3260 M4 Storage Server UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage
Cisco UCS B-Series M5 Blade Servers	CSCvm03339	Cisco UCS B-Series M5 Blade Servers UCS Manager 3.2(3g) - (Available) Cisco UCS C-Series M5 Rack Servers -Standalone Cisco IMC 3.1(2i) - (Available) Cisco UCS C-Series M5 Rack Servers - Managed UCS Manager 3.2(3g) - (Available)
Cisco UCS C-Series M2 Rack Servers	CSCvm02934	Cisco UCS B-Series M2 Blade Servers - Managed UCS Manager 2.2(8l) - (Available) UCS Manager 3.2(3g) - (Available) Cisco UCS C-Series M2 Rack Servers - Managed UCS Manager 2.2(8l) - (Available) Cisco IMC 1.4(3z09)(Available) Cisco IMC 1.5(9f)(Available)
Cisco UCS C-Series M3 Rack Servers - Managed	CSCvm03356	Cisco UCS B-Series M3 Blade Servers - Managed UCS Manager 2.2(8l) (Available) UCS Manager 3.1(3j) (Available) UCS Manager 3.2(3g) (Available) UCS C-Series M3 Rack Servers - Managed UCS Manager 3.2(3g) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco IMC 3.0(4i) - (Available) Cisco IMC 2.0(9o) - (Available)
Cisco UCS C-Series M3 Rack Servers - Standalone	CSCvm03357	UCS Manager 3.2(3g) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco IMC 3.0(4i) - (Available) Cisco IMC 2.0(9o) - (Available)
Cisco UCS C-Series M4 Rack Servers (except C460) - Standalone ¹	CSCvm03353	Cisco IMC 3.0(4e) - (Available) Cisco IMC 2.0(10k) - (Available)
Cisco UCS C-Series M4 Rack Servers (except C460) -Managed ¹	CSCvm03351	Cisco UCS B-Series M4 Blade Servers (except B260 B460) UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage Server - UCS Manager 3.1(3j) - (Available) Cisco UCS C-Series M4 Rack Servers Cisco IMC 3.0(4e) - (Available) Cisco IMC 2.0(10k) - (Available) Cisco UCS S3260 M4 Storage Server UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage
Cisco UCS C-Series M5 Rack Servers - Managed ¹	CSCvm03339	Cisco UCS B-Series M5 Blade Servers UCS Manager 3.2(3g) - (Available) Cisco UCS C-Series M5 Rack Servers -Standalone Cisco IMC 3.1(2i) - (Available) Cisco UCS C-Series M5 Rack Servers - Managed UCS Manager 3.2(3g) - (Available)
Cisco UCS C-Series M5 Rack Servers -Standalone ¹	CSCvm03347	Cisco UCS B-Series M5 Blade Servers UCS Manager 3.2(3g) - (Available) Cisco UCS C-Series M5 Rack Servers -Standalone Cisco IMC 3.1(2i) - (Available)
Cisco UCS E-Series Servers	CSCvm02902
Cisco UCS S3260 M4 Storage Server	CSCvm03351	Cisco UCS B-Series M4 Blade Servers (except B260 B460) UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage Server - UCS Manager 3.1(3j) - (Available) Cisco UCS C-Series M4 Rack Servers Cisco IMC 3.0(4e) - (Available) Cisco IMC 2.0(10k) - (Available) Cisco UCS S3260 M4 Storage Server UCS Manager 3.2(3e) - (Available) UCS Manager 3.1(3j) - (Available) UCS Manager 2.2(8l) - (Available) Cisco UCS C-Series M4 Rack Servers - Managed (except C460) - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Managed - UCS Manager 3.2(3e) - (Available) Cisco UCS S3260 M4 Storage Server - Standalone - Cisco IMC 3.0(4e) - (Available) Cisco UCS S3260 M4 Storage
Voice and Unified Communications Devices
Cisco Remote Expert Mobile	CSCvm02994
Video, Streaming, TelePresence, and Transcoding Devices
Cisco Video Surveillance Media Server	CSCvm04841
Cisco Cloud Hosted Services
Cisco Metacloud	CSCvm02969

¹Cisco UCS M4 and M5 Rack Servers are used as part of the Cisco HyperFlex Solution.

Products Confirmed Not Vulnerable

The following Cisco products are considered not vulnerable to foreshadow or other identified L1 Terminal Fault-related vulnerabilities. Specific models in these product families may be affected and will be explicitly listed in the preceding Vulnerable Products section.

Routers

Branch Routers

Cisco 4000 Series Integrated Services Routers
Cisco 1900 Series Integrated Services Routers
Cisco 1800 Series Integrated Services Routers
Cisco 1000 Series Integrated Services Routers
Cisco 2900 Series Integrated Services Routers
Cisco 3900 Series Integrated Services Routers
Cisco 800 Series Routers

Data Center Interconnect Platforms

Cisco ASR 1000 Series Aggregation Services Routers
Cisco Carrier Routing System
Cisco Catalyst 6500 Series Switches

Industrial Routers

Cisco 2000 Series Connected Grid Routers
Cisco 1000 Series Connected Grid Routers
Cisco 900 Series Industrial Routers
Cisco 800 Series Industrial Integrated Services Routers
Cisco 500 Series WPAN Industrial Routers
Cisco Wireless Gateway for LoRaWAN

Cloud Networking Services

Cisco Cloud Services Router 1000V Series

Mobile Internet Routers

Cisco 5900 Series Embedded Services Routers
Cisco MWR 2900 Series Mobile Wireless Routers

Service Provider Core Routers

Cisco Carrier Routing System
Cisco Network Convergence System 6000 Series Routers

Service Provider Edge Routers

Cisco 12000 Series Routers
Cisco ASR 1000 Series Aggregation Services Routers
Cisco ASR 920 Series Aggregation Services Router
Cisco ASR 901 Series Aggregation Services Routers
Cisco ASR 900 Series Aggregation Services Routers
Cisco XR 12000 Series Router
Cisco Network Convergence System 500 Series Routers

Small Business Routers

Cisco 1900 Series Integrated Services Routers
Cisco 800 Series Routers
Cisco Small Business RV Series Routers

Virtual Routers

Cisco Cloud Services Router 1000V Series
Cisco WAN Aggregation and Internet Edge Routers
Cisco ASR 1000 Series Aggregation Services Routers
Cisco Catalyst 6500 Series Switches

Switches

Blade Switches

Cisco Blade Switches for Dell
Cisco Blade Switches for FSC
Cisco Blade Switches for HP
Cisco Nexus 4000 Series Switches
Cisco Switch Modules for IBM
Cisco SFS Solutions for Blade Switches
Cisco SFS Solution for Dell

Campus LAN Switches - Access

Cisco Catalyst 4500 Series Switches
Cisco Catalyst 3850 Series Switches
Cisco Catalyst 3750 Series Switches
Cisco Catalyst 2960-L Series Switches
Cisco Catalyst 2960-Plus Series Switches
Cisco Catalyst 2960-X Series Switches
Cisco Edge Series
Cisco Meraki Cloud Managed Switches
Cisco Redundant Power Systems

Campus LAN Switches - Core and Distribution

Cisco Catalyst 9500 Series Switches
Cisco Catalyst 6800 Series Switches
Cisco Catalyst 6500 Series Switches
Cisco Catalyst 6500 Virtual Switching System 1440
Cisco Catalyst 4900 Series Switches
Cisco Catalyst 4500 Series Switches
Cisco Catalyst 4500-X Series Switches
Cisco Catalyst 3850 Series Switches

Campus LAN Switches - Digital Building

Cisco Catalyst 3560-CX Series Switches
Cisco Catalyst 2960-C Series Switches
Cisco Catalyst 2960-CX Series Switches
Cisco Catalyst 2960-L Series Switches
Cisco Catalyst Digital Building Series Switches

Data Center Switches

Cisco Nexus 2000 Series Fabric Extenders
Cisco R Series Racks
Cisco RP Series Power Distribution Units
Cisco Data Center Network Management
Cisco Data Center Network Manager
Cisco Fabric Manager
Cisco MDS 9000 Series Multilayer Switches
Cisco Data Center Switches with Cisco IOS Software
Cisco Catalyst 6500 Series Switches
Cisco Catalyst 4900 Series Switches
Cisco Energy and Asset Management
Cisco Asset Management Suite
Cisco Energy Management Suite

Industrial Ethernet Switches

Cisco 2500 Series Connected Grid Switches
Cisco Embedded Service 2020 Series Switches
Cisco Industrial Ethernet 5000 Series Switches
Cisco Industrial Ethernet 4010 Series Switches
Cisco Industrial Ethernet 4000 Series Switches
Cisco Industrial Ethernet 3010 Series Switches
Cisco Industrial Ethernet 3000 Series Switches
Cisco Industrial Ethernet 2000 Series Switches
Cisco Industrial Ethernet 2000U Series Switches
Cisco Industrial Ethernet 1000 Series Switches

InfiniBand Switches

Cisco SFS 7000 Series InfiniBand Server Switches
Cisco SFS 3500 Series Multifabric Server Switches
Cisco SFS 3000 Series Multifabric Server Switches

LAN Switches - Small Business

Cisco 550X Series Stackable Managed Switches
Cisco 350 Series Managed Switches
Cisco 350X Series Stackable Managed Switches
Cisco 250 Series Smart Switches
Cisco 220 Series Smart Switches
Cisco ESW2 Series Advanced Switches
Cisco Small Business 300 Series Managed Switches
Cisco Small Business 200 Series Smart Switches
Cisco Small Business 110 Series Unmanaged Switches
Cisco Small Business Smart Switches
Cisco Small Business Stackable Managed Switches
Cisco Small Business Unmanaged Switches

Service Provider Switches - Aggregation

Cisco Catalyst 6500 Series Switches
Cisco Catalyst 4500 Series Switches
Cisco ME 4900 Series Ethernet Switches
Cisco ME 3800X Series Carrier Ethernet Switch Routers

Service Provider Switches - Ethernet Access

Cisco Catalyst 3750 Metro Series Switches
Cisco ME 3600X Series Ethernet Access Switches
Cisco ME 3400 Series Ethernet Access Switches
Cisco ME 3400E Series Ethernet Access Switches
Cisco ME 1200 Series Carrier Ethernet Access Devices
Cisco Small Business Gigabit SP Switches

Virtual Networking

Cisco Application Centric Infrastructure Virtual Edge
Cisco Application Virtual Switch
Cisco Cloud Services Platform 2100
Cisco Nexus 1000V InterCloud
Cisco Nexus 1000V Switch for KVM
Cisco Nexus 1000V Switch for Microsoft Hyper-V
Cisco Nexus 1000V Switch for VMware vSphere

Cloud Networking Services

Cisco Prime Virtual Network Analysis Module (vNAM)
Cisco Virtual Security Gateway

WAN Switches

Cisco IGX 8400 Series Switches

MGX Switches

Cisco MGX 8900 Series Switches
Cisco MGX 8850 Software
Cisco MGX 8800 Series Switches
Cisco MGX 8250 Software
Cisco MGX 8200 Series Edge Concentrators

Wireless

Indoor Access Points

Cisco Aironet 1815 Series Access Points
Cisco Aironet 2800 Series Access Points
Cisco Aironet 3800 Series Access Points
Cisco Aironet 4800 Access Point

Outdoor and Industrial Access Points

Cisco Aironet 1540 Series Access Points
Cisco Aironet 1560 Series Access Points
Cisco Aironet 1570 Series Access Points

Wireless LAN Controllers

Cisco Virtual Wireless Controller
Cisco Meraki Cloud Managed Access Points

Security

Cisco Cloud-Hosted Products

Cisco AMP family of products and endpoint protection clients
Cisco Cloud Security
Cisco Cloudlock
Cisco Umbrella

Email Security

Cisco Content Security Management Appliance
Cisco Email Security
Cisco Email Encryption
Cisco Email Encryption
Cisco Registered Envelope Service

Firewalls

Cisco 3000 Series Industrial Security Appliances (ISA)
Cisco Meraki Cloud Managed Security Appliances
Cisco Adaptive Security Appliances (ASA)
Cisco Adaptive Security Virtual Appliance (ASAv)

Firewall Management

Cisco Adaptive Security Device Manager
Cisco Firepower Device Manager
Cisco Firepower Management Center
Cisco Security Manager

Next-Generation Firewalls (NGFW)

Cisco ASA 5500-X with FirePOWER Services
Cisco Firepower 9000 Series
Cisco Firepower 4100 Series
Cisco Firepower 2100 Series

Network Security

Cisco VPN Internal Service Module for ISR G2

Network Visibility and Segmentation

Cisco ISE Passive Identity Connector
Cisco Security Packet Analyzer
Cisco Stealthwatch Cloud
Cisco Stealthwatch Enterprise

Next-Generation Intrusion Prevention System (NGIPS)

Cisco FirePOWER 8000 Series Appliances
Cisco FirePOWER 7000 Series Appliances

Security Management

Cisco Firepower Management Center
Cisco Adaptive Security Device Manager
Cisco Content Security Management Appliance
Cisco Defense Orchestrator

Unified Communications

Cisco Business Edition 6000 - 100x80
Cisco Business Edition 6000
Cisco Jabber - 100x80
Cisco Jabber
Cisco Expressway

Customer Care

Cisco Unified Contact Center Express
Cisco Unified Contact Center Enterprise
Cisco Finesse
Cisco MediaSense

Conferencing

Cisco Meeting Server
Cisco Webex Meeting Center
Cisco Webex Meetings Server
Cisco TelePresence Management Suite
Cisco TelePresence Server
Cisco TelePresence Conductor

Collaboration Endpoints

Cisco 8800 Series IP Phones
Cisco 7800 Series IP Phones
Cisco 6900 Series IP Phones
Cisco 3900 Series SIP Phones
Cisco Desktop Collaboration Experience - DX600 Series
Cisco DX Series
Cisco TelePresence SX10 Quick Set
Cisco TelePresence MX Series
Cisco TelePresence IX5000 Series

Cisco Unified Computing Management Platforms

Cisco Intersight
Cisco UCS Manager
Cisco UCS Central
Cisco UCS Performance Manager

IP Video

Cisco Access Edge
Cisco Cable Modem Termination Systems (CMTSs)
Cisco RF Switches
Cisco cBR Series Converged Broadband Routers
Cisco uBR10000 Series Universal Broadband Routers
Cisco uBR7225VXR Universal Broadband Routers
Cisco uBR7200 Series Universal Broadband Routers

No other Cisco IP video products are known to be affected.

Internet of Things (IoT)

Cisco Jasper Control Center
Cisco IoT Management
Cisco Application Enablement
Cisco IoT Security
Cisco Kinetic
Cisco Extended Enterprise

Cisco has investigated the following products and they are not considered to be affected by the vulnerabilities that are described in this advisory:

Collaboration and Social Media

Cisco Meeting Server

Network Application, Service, and Acceleration

Cisco Tetration Analytics

Network and Content Security Devices

Cisco Identity Services Engine (ISE)
Cisco Umbrella Virtual Appliance

Network Management and Provisioning

Cisco Evolved Programmable Network Manager
Cisco Policy Suite
Cisco Prime Infrastructure

Routing and Switching - Enterprise and Service Provider

Cisco 1000 Series Connected Grid Routers
Cisco 800 Series Industrial Integrated Services Routers
Cisco Application Policy Infrastructure Controller (APIC)
Cisco Catalyst 3650 Series Switches - IOx feature
Cisco Nexus 4000 Series Blade Switches
Cisco Nexus 9000 Series Fabric Switches - ACI mode
Cisco Virtual Application Policy Infrastructure Controller (APIC)

Unified Computing

Cisco Common Services Platform Collector
Cisco UCS Director

Voice and Unified Communications Devices

Cisco Meeting Management
Cisco Unified Communications Manager Session Management Edition
Cisco Unified Communications Manager

Video, Streaming, TelePresence, and Transcoding Devices

Cisco TelePresence Conductor
Cisco TelePresence ISDN Gateway 3241
Cisco TelePresence ISDN Gateway MSE 8321
Cisco TelePresence MCU 4200 Series, 4500 Series, 5300 Series, MSE 8420, and MSE 8510
Cisco TelePresence Server 7010 and MSE 8710
Cisco TelePresence Server on Multiparty Media 310 and 320
Cisco TelePresence Server on Multiparty Media 820
Cisco TelePresence Server on Virtual Machine
Cisco TelePresence Supervisor MSE 8050
Tandberg Codian ISDN Gateway 3210, 3220, and 3240
Tandberg Codian MSE 8320

Wireless

Cisco Mobility Services Engine
Cisco Wireless Gateway for LoRaWAN
Cisco Wireless LAN Controller

Cisco Cloud Hosted Services

Cisco Cloudlock
Cisco Hosted Collaboration Solution (HCS) for Government
Cisco Umbrella
Cisco Webex Teams (formerly Cisco Spark)

Workarounds

There are no workarounds that address this vulnerability.

Fixed Software

For information about fixed software releases, consult the Cisco bug ID(s) at the top of this advisory.

When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories and Alerts page, to determine exposure and a complete upgrade solution.

In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.

Exploitation and Public Announcements

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

Source

CVE ID CVE-2018-3615 was reported to Intel by Raoul Strackx, Jo Van Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F. Wenisch, and Yuval Yarom.

CVE ID CVE-2018-3620 and CVE-2018-3646 were discovered by Intel during the research of foreshadow.

Cisco Security Vulnerability Policy

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Subscribe to Cisco Security Notifications

URL

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel

Revision History

Version	Description	Section	Status	Date
1.5	Updated the Products Under Investigation, Confirmed Vulnerable, and Confirmed Not Vulnerable sections.	Affected Products	Interim	2018-August-31
1.4	Updated the Products Under Investigation, Confirmed Vulnerable, and Confirmed Not Vulnerable sections.	Affected Products	Interim	2018-August-28
1.3	Updated the Products Under Investigation, Confirmed Vulnerable, and Confirmed Not Vulnerable sections.	Affected Products	Interim	2018-August-22
1.2	Removed SGX reference to UCS in the Summary section, no shipping UCS products currently support SGX technology. Updated Affected Products sections: Products Under Investigation, Confirmed Vulnerable, and Confirmed Not Vulnerable.	Summary and Affected Products	Interim	2018-August-17
1.1	Updated Affected Products Sections: Under Investigation, Confirmed Vulnerable, and Confirmed Not Vulnerable.	Affected Products	Interim	2018-August-15
1.0	Initial public release.	-	Interim	2018-August-14

Show Complete History...

Legal Disclaimer

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. CISCO EXPECTS TO UPDATE THIS DOCUMENT AS NEW INFORMATION BECOMES AVAILABLE.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.

Feedback

Leave additional feedback

CPU Side-Channel Information Disclosure Vulnerabilities: August 2018

Summary

Affected Products

Products Under Investigation

Vulnerable Products

Products Confirmed Not Vulnerable

Routers

Switches

Wireless

Security

Unified Communications

Customer Care

Conferencing

Collaboration Endpoints

Cisco Unified Computing Management Platforms

IP Video

Internet of Things (IoT)

Workarounds

Fixed Software

Exploitation and Public Announcements

Source

Cisco Security Vulnerability Policy

Subscribe to Cisco Security Notifications

URL

Revision History

Legal Disclaimer

Feedback

Vulmon Search

About

Products

Connect