The NSR 828-1 patch addresses a RADIUS vulnerability (CVE-2024-35969) in Security Analytics 8.2.8.
Security Analytics 8.2.8
Below are the installation instructions for installing NSR 8.2.8-1 on Security Analytics. The file can be download from one of two locations. If you have a 16-digit alphanumeric license key, you can download it here: https://license.soleranetworks.com/upgrades/NSR828-1
Or you can download it by going to the Broadcom Support Portal and selecting Security Analytics 8.2.8.
# This NSR is intended for Security Analytics (SA) 8.2.8-55675.
#
# Testing
#
# This NSR has been minimally qualified by the SA QA team - testing before and
# after patch installation is recommended.
#
# Instructions for Installation
#
# 1. Remove any existing NSR from the system (instructions below, original NSR script required)
#
# 2. Ensure /home/nsr directory exists, run:
# mkdir -p /home/nsr
#
# 3. Put this file (nsr828-1-55675.55677.sh) on appliance in directory /home/nsr
#
# 4. On appliance, run:
# cd /home/nsr
# bash ./nsr828-1-55675.55677.sh
#
# 5. It is recommended that testing be performed before and after patch
# installation to confirm expected behavior as described above.
#
# 6. Leave the script (nsr828-1-55675.55677.sh) and backup file (nsr828-1-55675.55677.backup.tgz) in the /home/nsr directory.
#
# Instructions for Removal
#
# 1. Remove nsr:
# cd /home/nsr
# bash ./nsr828-1-55675.55677.sh -r
#
# 2. It is recommended that testing be performed before and after patch
# removal to confirm expected behavior as described above.
#
# General Availability
#
# These issues will be fixed in the 8.2.9 release.