Layer7 API Management

Addressing the "Foreshadow" L1 Terminal Fault Attack Vulnerabilities (CVE-2018-3620 & CVE-2018-3646) for the API Management Product Suite

  • 1.  Addressing the "Foreshadow" L1 Terminal Fault Attack Vulnerabilities (CVE-2018-3620 & CVE-2018-3646) for the API Management Product Suite

    Posted 08-15-2018 03:31 PM

    Hello everyone,

     

    This is a quick note to say that we have published a very important knowledge base ("KB”) article related to the new "Foreshadow” vulnerability (closely related to the "Spectre” and "Meltdown” vulnerabilities earlier).

     

    https://comm.support.ca.com/kb/addressing-the-foreshadow-l1-terminal-fault-attack-vulnerabilities-cve-2018-3620--cve-2018-3646-for-the-api-management-product-suite/kb000111122

     

    The above KB article will be considered our "source of truth” for representing this vulnerability with regards to the API Management product suite. Please keep reviewing that KB article, as it will be continually updated as more information becomes available.

     

    Please reach out if you have any feedback, questions, or concerns over the content provided in the KB article, and we will aim to address them as quickly as possible.

     

    Sincerely,

     

    Dustin Dauncey

    Sr Support Engineer, Global Customer Success

    Email: Dustin.Dauncey@ca.com

    Phone: +1 800 225 5224, 48385

    Phone if outside North America: https://tinyurl.com/CAContactSupport

    CA API Management Community: https://tinyurl.com/CAAPIMCommunity