#VU102576 Man-in-the-Middle (MitM) attack in Brocade Fabric OS - CVE-2024-7516

Cybersecurity Help s.r.o.

Published: 2025-01-13

Vulnerability identifier: #VU102576

Vulnerability risk: Medium

CVSSv4.0: 2 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-7516

CWE-ID: CWE-300

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Brocade Fabric OS
Operating systems & Components / Operating system

Vendor: Brocade

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a switch admin. A remote attacker can perform remote service session hijacking attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Brocade Fabric OS: 9.2.0c - 9.2.1

External links
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25177

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Brocade Fabric OS