Meltdown & Spectre Vulnerabilities Help

Jay_F · ‎01-09-2018

Hi, Is anyone able to confirm whether the above vulnerabilities affect:

Cisco 3750 switches

Cisco 3850 Switches (I checked on this site and looks like its not affected, https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel)

Cisco 2504 wireless LAN controllers

Cisco Aironet 2702 series AP's

Nothing really concrete out there from Cisco at the moment.

Any help greatly appreciated.

jwcalifo3581 · ‎01-09-2018

Same question here! 3650s and 3850s are not vulnerable, but the 3750 (and 3750e/x/g) were not mentioned.

Cisco, if 3650 and 3850 are safe, why was 3750 not mentioned? Is 3750 not safe? Please update RE: 3750 switches. Thank you.

JW

Leo Laohoo · ‎01-09-2018

3560/3750 family of switches are End-of-Support already. So this means Cisco is not going to investigate. I don't believe 3560/3750 have Intel chips for CPU.

3650/3850, according to the Security Advisory, are not affected by both vulnerabilities.

Jay_F · ‎01-10-2018

Thanks for the replies. What about Cisco wireless controllers ? wouldn't these need to have an update ? and would any of the AP's need some form of update ?

Leo Laohoo · ‎01-10-2018

The only WLC that are affected by these vulnerabilities are the ones that are run on UCS chassis, like the 5520 & 8540.
For now, we are waiting to the type of fix that will be introduce. I suspect the fix will be in form of a firmware for the CIMC.

Pedro Ivo Silva · ‎05-11-2018

They are in End-of-Life process, but the End of Vulnerability/Security Support is October 30, 2019, according to EOL10623.

In my understanding they must keep the security updates for these platforms until october 30, 2019.

Is it correct?

Jay_F · ‎05-15-2018

Hi, I think you are correct where it says:

"The last date that Cisco Engineering may release a planned maintenance release or scheduled software remedy for a security vulnerability issue."

that being October 30th, 2019.

Thanks