PT-2025-6684 · Brocade · Brocade Sannav Ova

Published

2025-02-13

Updated

2025-08-26

CVE-2024-4282

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Brocade SANnav OVA versions prior to 2.3.1b

Description The issue concerns the use of a deprecated SHA1 setting for SSH on port 22. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For versions prior to 2.3.1b, update to version 2.3.1b or later to resolve the issue. As a temporary workaround, consider disabling the use of SHA1 for SSH on port 22 until a patch is available. Restrict access to SSH on port 22 to minimize the risk of exploitation.

Fix

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-327

Related Identifiers

BDU:2025-02104

CVE-2024-4282

Affected Products

Brocade Sannav Ova

PT-2025-6684 · Brocade · Brocade Sannav Ova

CVE-2024-4282

Weakness Enumeration

Related Identifiers

Affected Products

References · 8