DSA-2023-296: Security Update for Dell Connectrix (Brocade) for Multiple Vulnerabilities
Summary: Dell Connectrix (Brocade) remediation is available for Fabric OS (FOS) multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Critical
Details
| Third-party Component | CVEs | More Information |
|---|---|---|
| Brocade Fabric OS License | CVE-2021-27795 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/  |
| FOS | CVE-2022-33185 | See NVD link below for individual scores for each CVE. http://nvd.nist.gov/ |
Affected Products & Remediation
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2022-33185, CVE-2021-27795 | Connectrix B-Series | FOS | Versions prior to 9.1.1 | Version 9.1.1 or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
| CVE-2022-33185 | Connectrix B-Series | FOS | Versions prior to 9.0.1e | Version 9.0.1e or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
| CVE-2022-33185 | Connectrix B-Series | FOS | Versions prior to 9.1.0b | Version 9.1.0b or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2022-33185, CVE-2021-27795 | Connectrix B-Series | FOS | Versions prior to 9.1.1 | Version 9.1.1 or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
| CVE-2022-33185 | Connectrix B-Series | FOS | Versions prior to 9.0.1e | Version 9.0.1e or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
| CVE-2022-33185 | Connectrix B-Series | FOS | Versions prior to 9.1.0b | Version 9.1.0b or later | https://www.dell.com/support/product-details/product/connectrix-b-series-hardware/drivers |
Workarounds & Mitigations
| CVE ID | Workaround and Mitigation |
|---|---|
| CVE-2021- 27795 | Brocade Fabric OS License - Broadcom recommends that customers operating Brocade Fabric OS products only acquire license keys from a trusted vendor. If you suspect you may have installed an illegitimate license key on a Brocade switch, please contact your Broadcom-authorized support vendor for assistance in safely removing the license key. Newer generation Brocade Fabric OS products utilize an enhanced cryptographic implementation that is designed to prevent the introduction of fraudulent keys on the system. However, customers that acquire license keys only from trusted vendors will not be exposed to any vulnerabilities. |
Revision History
| Revision | Date | Description |
| 1.0 | 2023-08-08 | Initial Release |
| 2.0 | 2025-02-11 | Updated for enhanced format presentation with no changes to content |
| 3.0 | 2025-02-17 | Updated the category section |
Related Information
Legal Disclaimer
Affected Products
Connectrix B-Series, Connectrix B-Series Hardware, Connectrix DS-6505B, Connectrix DS-6510B, Connectrix DS-6520B, Connectrix DS-6610B, Connectrix DS-6620B, Connectrix DS-6620B-V2, Connectrix DS-6630B, Connectrix DS-6630B-V2, Connectrix DS-7720B
, Connectrix DS-7730B, Connectrix DS 6505B, Connectrix DS 6510B, Connectrix DS 6520B, Connectrix DS 6610B, Connectrix DS 6620B, Connectrix DS 6630B, Connectrix ED-DCX6-4B, Connectrix ED-DCX6-8B, Connectrix ED-DCX7-4B, Connectrix ED-DCX7-8B, Connectrix ED-DCX8510-4B, Connectrix ED-DCX8510-8B, Connectrix MP-7810B, Connectrix MP-7840B, Connectrix SANnav
...
Products
Connectrix DS-7710B, Connectrix MP-7850B, Connectrix MP 7810B, Connectrix MP 7840BArticle Properties
Article Number: 000216569
Article Type: Dell Security Advisory
Last Modified: 18 Feb 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.