PT-2024-36391 · Brocade · Brocade Fabric Os
Pierre Barre
·
Published
2024-06-25
·
Updated
2024-06-26
·
CVE-2024-5460
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Brocade Fabric OS versions before v9.0.0
Description
A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature could allow an authenticated, remote attacker to read data from an affected device via SNMP. The issue is due to a hard-coded, default community string in the configuration file for the SNMP daemon. An attacker could exploit this by using the static community string in SNMP version 1 queries to an affected device.
Recommendations
For Brocade Fabric OS versions before v9.0.0, update to version v9.0.0 or later to resolve the issue. As a temporary workaround, consider changing the default community string in the SNMP daemon configuration file to prevent unauthorized access. Restrict access to SNMP version 1 queries to minimize the risk of exploitation.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Brocade Fabric Os