Insecure SSH Key Length Vulnerability in Brocade Fabric OS and Brocade SANnav

Insecure SSH Key Length Vulnerability in Brocade Fabric OS and Brocade SANnav

CVE-2020-15387 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0.0, and Brocade SANnav before v2.1.1 utilize keys of less than 2048 bits, which may be vulnerable to man-in-the-middle attacks and/or insecure SSH communications.

Learn more about our Cis Benchmark Audit For Server Software.