cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2326
Views
15
Helpful
3
Replies

BE6000-M5: ESXI potentially vulnerable CVE-2018-3646 -action required?

gfolens
Level 4
Level 4

I have a BE6000-M5 and on the ESXi mgmt page I see this warning: "This host is potentially vulnerable to issues described in CVE-2018-3646, please refer to https://kb.vmware.com/s/article/55636 for details and VMware recommendations"

 

Do I need to take action on this, i.e. disable hyperthreadingMitigation as described on the CVE?

 

3 Replies 3

josoneal
Cisco Employee
Cisco Employee

Hello Gfolens,

 

It will depend on what UCSM Firmware your blades are on in order to determine if you are affected. Fixed firmware for blades is on 3.2.(3h).

 

Here is documentation for you: https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm03339

 

-Josh

Strange, I'm running v4.0(2f) on both servers and both have the warning...

There are also hyper-visor specific changes that need to be applied.  See KB articles from VMware:

https://kb.vmware.com/s/article/55636

https://kb.vmware.com/s/article/55806

 

You can also disable the warning if these are not production and you do not intend to resolve the issue.

There were also some fixes in the 6.7U2 vSphere, but I've not read through them yet.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: