Operational Defect Database
BugZero updated this defect 47 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
VMware | 97391
VMware Response to CVE-2024-22247 (VMSA-2024-0008)
Last update date:
4/2/2024
Affected products:
SD-WAN
Affected releases:
No affected releases provided.
Fixed releases:
No fixed releases provided.
Description:
Details
CVE-2024-22247 details a missing authentication and protection mechanism vulnerability that impacts an SD-WAN EdgeVMware's response to this vulnerability is documented in VMSA-2024-0008Please ensure that you have reviewed VMSA-2024-0008 before proceeding with the instructions in the article.
Solution
All supported SD-WAN Edge hardware devices are impacted by this vulnerability. This KB documents the mitigation instructions for CVE-2024-22247. For more information, please refer to the VMware Security Advisory VMSA-2024-0008 . Mitigation Instructions by SD-WAN Edge Model: 510/520/540 It is not possible to disable USB boot in these Edge models. However, the vulnerability can be mitigated by limiting physical access to the router to trusted individuals and ensuring no USB devices are physically attached to the device during the activation stage. 610 Enter BIOS by pressing the Del or F2 key when prompted during rebooting. Disable USB as a storage device Move the Left/Right arrow key to AdvancedMove the Up/Down arrow key to USB Configuration Press EnterMove the Up/Down arrow key to highlight Disabled Press EnterPress ESC to return the main menu Configure Admin Password Move the Left/Right arrow key to SecurityMove the Up/Down arrow key to Administrator PasswordPress Enter Type in a password followed by an ENTERConfirm the password followed by an ENTERPress ESC to go back to the main menu Save and reset Move the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Save Changes and ResetMove the Left/Right arrow key to highlight YesPress Enter 620/640/680 Enter BIOS by pressing the Del or F2 key when prompted during rebooting. Disable USB as a storage device Move the Left/Right arrow key to AdvancedMove the Up/Down arrow key to USB Configuration Press EnterMove the Up/Down arrow key to highlight Disabled Press EnterPress ESC to return the main menu Configure Admin Password Move the Left/Right arrow key to SecurityMove the Up/Down arrow key to Administrator PasswordPress Enter Type in a password followed by an ENTERConfirm the password followed by an ENTERPress ESC to go back to the main menu Save and reset Move the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Save Changes and ResetMove the Left/Right arrow key to highlight YesPress Enter 840 Enter BIOS by pressing the Del key when prompted during rebooting. Disable booting from USB Move the Left/Right arrow key to BootMove the Up/Down arrow key to Boot Mode SelectPress ENTER Move the Left/Right arrow key to LEGACYPress ENTERMove the Left/Right arrow key to Legacy Boot Order #1Press ENTERMove the Up/Down arrow key to Hard Disk: … Press ENTERMove the Left/Right arrow key to Legacy Boot Order #2Press ENTERMove the Up/Down arrow key to Disabled Press ENTERRepeat the above steps for all Legacy Boot Orders other than #1 to disable booting Configure Admin Password Move the Left/Right arrow key to SecurityMove the Up/Down arrow key to Administrator PasswordPress Enter Type in a password followed by an ENTERConfirm the password followed by an ENTERPress ESC to go back to the main menu Save and reset Move the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Save Changes and ResetMove the Left/Right arrow key to highlight YesPress Enter 2000 Enter BIOS by pressing the Del key when prompted during rebooting. Disable booting from USB Move the Left/Right arrow key to BootMove the Up/Down arrow key to Boot Mode Select. Skip steps 2 to 5 if it’s already set to LEGACY (Default)Press ENTERMove the Left/Right arrow key to LEGACYPress ENTERMove the Left/Right arrow key to Legacy Boot Order #1Press ENTERMove the Up/Down arrow key to Hard Disk: … Press ENTERMove the Left/Right arrow key to Legacy Boot Order #2Press ENTERMove the Up/Down arrow key to Disabled Press ENTERRepeat the above steps for all Legacy Boot Orders other than #1 to disable booting Configure Admin Password Move the Left/Right arrow key to SecurityMove the Up/Down arrow key to Administrator PasswordPress Enter Type in a password followed by an ENTERConfirm the password followed by an ENTERPress ESC to go back to the main menu Save and reset Move the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Save Changes and ResetMove the Left/Right arrow key to highlight YesPress Enter 3400/3800/3810 Enter BIOS by pressing the Del or F2 key when prompted during rebooting. Disable USB as a storage device Move the Left/Right arrow key to AdvancedMove the Up/Down arrow key to USB Configuration Press EnterMove the Up/Down arrow key to highlight Disabled Press EnterPress ESC to return the main menu Configure Admin Password Move the Left/Right arrow key to SecurityMove the Up/Down arrow key to Administrator PasswordPress Enter Type in a password followed by an ENTERConfirm the password followed by an ENTERPress ESC to go back to the main menu Save and reset Move the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Save Changes and ResetMove the Left/Right arrow key to highlight YesPress Enter Restore booting via USB One may enable boot from a USB drive in some scenarios, e.g. updating the factory image via a USB drive. 510/520/540 It’s always enabled. Nothing needs to be done. 610 One may reboot his/her edges with the default BIOS settings. Boot into BIOS by pressing the Del or F2 key upon rebootingType in the Administrator PasswordMove the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Restore DefaultsPress EnterMove the Left/Right arrow key to highlight YesPress Enter Move the Up/Down arrow key to Save Changes and ResetPress ENTER, and follow the prompts to reset 620/648/680 One may reboot his/her edges with the default BIOS settings. Boot into BIOS by pressing the Del or F2 key upon rebootingType in the Administrator PasswordMove the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Restore DefaultsPress EnterMove the Left/Right arrow key to highlight YesPress Enter Move the Up/Down arrow key to Save Changes and ResetPress ENTER, and follow the prompts to reset 840 One may reboot his/her edges with the default BIOS settings. Boot into BIOS by pressing the Del key upon rebootingType in the Administrator PasswordMove the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Restore Optimized DefaultsPress EnterMove the Left/Right arrow key to highlight YesPress Enter Move the Up/Down arrow key to Save Changes and ResetPress ENTER, and follow the prompts to reset 2000 One may reboot his/her edges with the default BIOS settings. Boot into BIOS by pressing the Del key upon rebootingType in the Administrator PasswordMove the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Restore Optimized DefaultsPress EnterMove the Left/Right arrow key to highlight YesPress Enter Move the Up/Down arrow key to Save Changes and ResetPress ENTER, and follow the prompts to reset 3400/3800/3810 One may reboot his/her edges with the default BIOS settings. Boot into BIOS by pressing the Del or F2 key upon rebootingType in the Administrator PasswordMove the Left/Right arrow key to Save & ExitMove the Up/Down arrow key to Restore DefaultsPress EnterMove the Left/Right arrow key to highlight YesPress Enter Move the Up/Down arrow key to Save Changes and ResetPress ENTER, and follow the prompts to reset
