Spectre and Meltdown Vulnerabilities on ZENworks and ZENworks Reporting Appliances

  • 7022572
  • 18-Jan-2018
  • 18-Jan-2018

Environment

ZENworks Asset Management 11.4
ZENworks Asset Management 2017
ZENworks Configuration Management 11.4
ZENworks Configuration Management 2017
ZENworks Endpoint Security Management 11.4
ZENworks Endpoint Security Management 2017
ZENworks Full Disk Encryption 11.4
ZENworks Full Disk Encryption 2017
ZENworks Patch Management 11.4
ZENworks Patch Management 2017

Situation

The recent Spectre and Meltdown CPU vulnerabilities impact the underlying OS of any of the endpoint management products that utilize the SUSE Linux Enterprise appliance including the Micro Focus ZENworks and ZENworks Reporting Appliances.

The specific vulnerabilities are:
  • CVE-2017-5753
  • CVE-2017-5715
  • CVE-2017-5754

Resolution

The applicable patches are available in the respective appliance update channels.

Additional Information

If you are hosting any of the endpoint management products on Windows or SUSE Linux servers we strongly recommend that you apply the Spectre and Meltdown vulnerability patches to your server to prevent security events.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.