Get tailored security recommendations from our analyst team for CVE-2024-7517. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command.

This specific exploitation is only possible on IP Extension platforms: Brocade 7810, Brocade 7840, Brocade 7850 and on Brocade X6 or X7 directors with an SX-6 Extension blade installed. The attacker must be logged into the switch via SSH or serial console to conduct the attack.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Brocade

Fabric OS

Affected Versions:

Brocade Fabric OS versions before 9.2.0c, and 9.2.1 through 9.2.1a

brocade

fabric_os

Affected Versions:

0 9.2.1

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25071

Published: 2024-11-21T05:53:34.442Z

Last Modified: 2024-11-21T17:52:58.535Z

Copied to clipboard!

CVE-2024-7517

Expert Analysis

Description

Available Exploits

Related News

Affected Products

Fabric OS

Affected Versions:

fabric_os

Affected Versions:

References

Request Analysis

What to expect

Request Received!