CVE-2024-7516
Brocade Fabric OS before 9.2.2 does not enforce strict host key checking
A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a switch admin.
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:P/VC:L/VI:L/VA:H/SC:H/SI:N/SA:N
Affected products
Brocade · Fabric OSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →