Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-5460
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Brocade Fabric OS versions prior to v9.0 have default community strings
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP) feature of Brocade Fabric OS versions before v9.0.0 could allow an authenticated, remote attacker to read data from an affected device via SNMP. The vulnerability is due to hard-coded, default community string in the configuration file for the SNMP daemon. An attacker could exploit this vulnerability by using the static community string in SNMP version 1 queries to an affected device.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用硬编码的凭证
Source: NVD (National Vulnerability Database)
Vulnerability Title
Brocade Fabric OS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Brocade Fabric OS(FOS)是美国博科(Brocade)公司的一套使用在交换机和路由器等设备中的嵌入式操作系统。 Brocade Fabric OS v9.0.0 之前版本存在安全漏洞,该漏洞源于SNMP 守护程序的配置文件中硬编码默认设置community string,允许经过身份验证的远程攻击者通过 SNMP 从受影响的设备读取数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
BrocadeFabric OS prior to v9.0.0 -
II. Public POCs for CVE-2024-5460
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2024-5460
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: Fabric OS
Same vendor: Brocade
Same weakness: CWE-798
V. Comments for CVE-2024-5460

No comments yet

Leave a comment