CVE-2024-2005

Name of the Vulnerable Software and Affected Versions Blue Planet products through 22.12

Description A misconfiguration in the SAML implementation allows for privilege escalation. Only products using SAML authentication are affected. Blue Planet has released software updates to address this issue.

Recommendations For Blue Planet products through 22.12, upgrade to the latest software version as soon as possible. The software updates can be downloaded from the Ciena Support Portal. As a temporary workaround, consider restricting the use of SAML authentication until a patch is applied.