National Information Security Standardization Technical Committee Releases "Cyber Security Practice Guide-CPU Meltdown and Ghost Vulnerability Prevention Guidelines
The Secretariat of the National Information Security Standardization Technical Committee (hereinafter referred to as "NISSC Secretariat") has organized relevant vendors and security experts to prepare and publish the "Network Security Practice Guide-CPU Meltdown and Spectre Vulnerability Prevention Guidelines" (hereinafter referred to as "Prevention Guidelines") in response to the recently disclosed CPU Meltdown and Spectre vulnerabilities.
The meltdown and ghost vulnerabilities affect mainstream CPUs and have sparked widespread concern, said the head of the Secretariat of the Information Security Standards Committee. Relevant vendors should respond in a timely manner, provide the necessary technical support for their products, carry out patch upgrades in an orderly manner, guide users to raise security awareness, effectively control related risks, and safeguard the interests of users.
According to the report, the disclosed vulnerability belongs to the chip-level vulnerability, the main impact and risk include stealing memory data and causing sensitive information leakage. No direct attacks against individual users have been identified that exploit the above vulnerabilities.