To exploit this vulnerability, the attacker must have user-level access to the targeted system. This access requirement could reduce the likelihood of a successful exploit.
Systems utilizing speculative execution and branch prediction are affected, including systems that use modern processors manufactured by Intel, AMD, and ARM.
This vulnerability is known as a sub-variant of Spectre Variant 1, identified as CVE-2017-5753. Cisco previously documented this vulnerability in a Vulnerability Alert at the following link: Alert 56356
Cisco is aware of recently published security research related to speculative execution in modern CPU architectures. Our team is following our well-established process to investigate all aspects of the issue and evaluate any potential impact on Cisco products. If something new is found that our customers need to be aware of and respond to, we will share it through our established PSIRT disclosure processes.