CVE-2024-28810 is a vulnerability identified in the Infinera hiT 7300 optical transport platform, specifically version 5.60.50. The issue arises from the handling of diagnostic files exported by the @CT application, which contain sensitive information that should not be exposed. These diagnostic files, when exported, can be analyzed by an attacker with sufficient privileges to extract confidential data, leading to a loss of confidentiality. The vulnerability is classified under CWE-312, indicating the exposure of sensitive information through improper handling. The CVSS 3.1 base score is 6.6, reflecting a medium severity, with the vector indicating network attack vector (AV:N), high attack complexity (AC:H), requiring privileges (PR:H), no user interaction (UI:N), unchanged scope (S:U), and high impact on confidentiality, integrity, and availability (C:H/I:H/A:H). The vulnerability does not have publicly available patches or known exploits in the wild as of the publication date. The exposure of sensitive diagnostic data could allow attackers to gain insights into network configurations, credentials, or other critical operational details, potentially enabling further attacks or disruptions. The requirement for high privileges and high attack complexity limits the ease of exploitation but does not eliminate the risk, especially in environments where privileged access controls are weak or compromised. The vulnerability affects organizations using the Infinera hiT 7300 platform, which is widely deployed in telecommunications networks for high-capacity optical transport.

The primary impact of CVE-2024-28810 is the unauthorized disclosure of sensitive information contained within diagnostic files, which can compromise confidentiality. This exposure can lead to further exploitation, including unauthorized network access, disruption of services, or manipulation of network configurations, impacting integrity and availability. For telecommunications providers and enterprises relying on the Infinera hiT 7300 platform, this could result in significant operational disruptions, data breaches, and potential regulatory compliance violations. The requirement for high privileges to exploit the vulnerability means that insider threats or attackers who have already gained elevated access pose the greatest risk. The loss of confidentiality could facilitate advanced persistent threats (APTs) targeting critical infrastructure, especially in sectors where network uptime and data integrity are paramount. Given the critical role of optical transport equipment in global communications, the impact extends to national security, economic stability, and critical services continuity in affected regions.

To mitigate CVE-2024-28810, organizations should implement strict access controls to limit who can export and analyze diagnostic files from the @CT application. Privileged access management (PAM) solutions should be enforced to ensure only authorized personnel have the necessary rights. Monitoring and auditing of diagnostic file exports should be established to detect unusual or unauthorized activities promptly. Network segmentation can reduce exposure by isolating management interfaces and diagnostic functionalities from broader network access. If possible, disable or restrict diagnostic export features when not required. Organizations should engage with Infinera for any available patches or updates and apply them as soon as they become available. Additionally, conducting regular security assessments and penetration testing focused on privileged access and diagnostic data handling can help identify and remediate weaknesses. Training for administrators on secure handling of diagnostic data and awareness of this vulnerability is also recommended to reduce human error risks.