Use the following guidelines and suggested steps to help resolve known security vulnerability issues with the EZServer module in some Brocade Fibre Channel switches.
- Condition:
- A vulnerability exists in the Brocade EZswitch software server embedded in the Brocade Fabric OS.
- What it Means:
- The vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated attacker to run on a Brocade Fabric OS switch commands capable of modifying zoning, disabling the switch, disabling ports, and modifying the switch IP address. For details, see Brocade Security Advisory BSA-2022-2121.
- Corrective Action:
- Disable the EZServer:
- Using SSH, log on to the Brocade Fibre Channel switch.
- Run the configurechassis command:
brocadeswitch:admin> configurechassis Configure... cfgload attributes (yes, y, no, n): [no] ssl attributes (yes, y, no, n): [no] webtools attributes (yes, y, no, n): [no] y ... Login Session Timeout (in secs): (60..432000) [7200] EZserver Enabled (yes, y, no, n): [yes] no ... brocadeswitch:admin>
- Enter y to configure the webtools attributes.
- Enter no for the EZserver Enabled attribute.
Note: For more information, see Brocade Security Advisor CVE-2022-33186 : EZServer module vulnerability available at http://broadcom.com.