DSA-2024-467: Security Update for Dell Connectrix B-Series Component Vulnerabilities
Summary: Dell Connectrix B-Series remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Critical
Details
| Third-party Component | CVEs | More Information |
| weblinker | CVE-2024-10403 | BSA-2024-2763 |
| SSH | CVE-2024-7516 | BSA-2024-2742 |
| IPSEC | CVE-2024-7517 | BSA-2024-2731 |
| Wpa-supplicant | CVE-2024-52160 | BSA-2024-2730 |
| Linux Kernel | CVE-2024-1086 | BSA-2024-2603 |
| OpenSSL | CVE-2024-4603, CVE-2023-6237, CVE-2023-6129 | BSA-2024-2588, BSA-2024-2463, BSA-2024-2461 |
| Less | CVE-2022-48624 | BSA-2024-2600 |
| E2fsprogs | CVE-2022-1304 | BSA-2024-2648 |
| Sqlite | CVE-2023-7104 | BSA-2024-2608 |
Affected Products & Remediation
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions prior to 8.2.3e2 | Version 8.2.3e2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions 9.0.0 through 9.2.0c | Version 9.2.0c1 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403. CVE-2024-7517, CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.2.1 through 9.2.1a | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-7516 | Connectrix B-Series | FOS | Versions prior to 9.2.2 | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.0 through 9.2.0b1 | Version 9.2.0c or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160 | Connectrix B-Series | SANnav | Versions prior to 2.3.0a | Version 2.3.1 or later | https://www.dell.com/support/home/product-support/product/connectrix-sannav/drivers |
| CVEs Addressed | Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions prior to 8.2.3e2 | Version 8.2.3e2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403, CVE-2024-7517 | Connectrix B-Series | FOS | Versions 9.0.0 through 9.2.0c | Version 9.2.0c1 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-10403. CVE-2024-7517, CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.2.1 through 9.2.1a | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2024-7516 | Connectrix B-Series | FOS | Versions prior to 9.2.2 | Version 9.2.2 or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160, CVE-2024-1086, CVE-2024-4603, CVE-2023-6237, CVE-2023-6129, CVE-2022-48624, CVE-2023-7104, CVE-2022-1304 | Connectrix B-Series | FOS | Versions 9.0 through 9.2.0b1 | Version 9.2.0c or later | https://www.dell.com/support/home/product-support/product/connectrix-b-series-hardware/overview |
| CVE-2023-52160 | Connectrix B-Series | SANnav | Versions prior to 2.3.0a | Version 2.3.1 or later | https://www.dell.com/support/home/product-support/product/connectrix-sannav/drivers |
Workarounds & Mitigations
| CVE ID | Workaround and Mitigation |
| CVE-2024-7516 |
Brocade has added a command that allows Brocade Fabric OS switch admins to enable/disable “StrictHostKeyChecking” Enable strict host key checking using the “sshutil” CLI: sshutil stricthostkeycheck -value yes Disable strict host key checking using the “sshutil” CLI: sshutil stricthostkeycheck -value no Verify the current configuration using “sshutil” CLI: sshutil stricthostkeycheck -show |
Revision History
| Revision | Date | Description |
| 1.0 | 2024-12-16 | Initial Release |
| 2.0 | 2024-12-20 | Updated Remediated Versions for clarity |
| 3.0 | 2025-01-17 | Updated for enhanced format presentation with no changes to content |
Related Information
Legal Disclaimer
Affected Products
Connectrix DS-6505B, Connectrix DS-6510B, Connectrix DS-6520B, Connectrix DS-6620B-V2, Connectrix DS-6630B, Connectrix DS-6630B-V2, Connectrix DS-7720B, Connectrix DS-7730B, Connectrix DS 6610B, Connectrix DS 6620B, Connectrix ED-DCX6-4B
, Connectrix ED-DCX6-8B, Connectrix ED-DCX7-4B, Connectrix ED-DCX7-8B, Connectrix MP-7810B, Connectrix MP-7840B, Connectrix MP-7850B
...
Article Properties
Article Number: 000259787
Article Type: Dell Security Advisory
Last Modified: 18 Feb 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.