Intel processors and Meltdown/Spectre vulnerabilities: what is going on?
05 01 2018
The beginning of the year has already witnessed the discovery of two new vulnerabilities, called Meltdown and Spectre. These security gaps can impact organizations using modern processors. Intel has announced on January 3rd that "some of its processors could be vulnerable to a security breach". But these breaches are not limited to Intel processors; AMD and ARM are also concerned.
While it is true that Stormshield solutions use such Intel and ARM processors, please note that our solutions are not directly impacted by these vulnerabilities.
[Update – 01/19] With Stormshield's solutions, you can be confident
Our Research & Development team have analyzed these vulnerabilities, as well as their consequences. We can confirm that:
- our Stormshield Network Security products are unaffected by these vulnerabilities and cannot be exploited directly by an attacker. In case you’re using our virtual appliances, it’s necessary to update your hypervisor according to the procedure provided by the publisher;
- our other Stormshield Endpoint Security and Stormshield Data Security solutions are not directly affected by these vulnerabilities. Nevertheless, it is imperative to update your operating systems (OS - Operating System) with the release of the corrective patches (Windows in particular).
All the investigations concerning the Meltdown and Spectre vulnerabilities have been reported on the Stormshield Advisories platform: advisories.stormshield.eu.
And for more information on the Meltdown and Spectre vulnerabilities, you can visit the dedicated website: meltdownattack.com.