CVE-2024-7516

A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a switch admin.

Published: Nov 12, 2024
Updated: May 4, 2025
CVE: CVE-2024-7516
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.1
AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
broadcom / fabric_operating_system	-	9.2.2

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25177

Vulnerability Database

289,871

CVE-2024-7516