216.73.217.139

CVE-2024-7517

· Published 21/11/2024 11:15 · Modified 21/11/2024 13:57

Labels: CVE-2024-7517 2024-11-21CVE-2024-7517CWE-77[email protected]

Essential information

Published
21/11/2024 11:15
Modified
21/11/2024 13:57
Author
Creator
CISA KEV
No
CWE

Description

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extension platforms: Brocade 7810, Brocade 7840, Brocade 7850 and on Brocade X6 or X7 directors with an SX-6 Extension blade installed. The attacker must be logged into the switch via SSH or serial console to conduct the attack.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References