Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom brocade fabric operating system - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-33180
A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, 8.2.0cbn5 could allow a local authenticated malicious user to export out sensitive files with “seccryptocfg”, “configupload”.
Broadcom Fabric Operating System
Broadcom Fabric Operating System 9.1.0
5.3
CVSSv3
CVE-2020-15386
Brocade Fabric OS prior to v9.0.1a and 8.2.3a and after v9.0.0 and 8.2.2d may observe high CPU load during security scanning, which could lead to a slower response to CLI commands and other operations.
Broadcom Fabric Operating System 9.0.1
Broadcom Fabric Operating System 9.0.0b
Broadcom Fabric Operating System 9.0.0a
Broadcom Fabric Operating System 8.2.3
4.4
CVSSv3
CVE-2023-4162
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg --se...
Brocade Fabric Operating System
8.8
CVSSv3
CVE-2022-33179
A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, and 7.4.2j could allow a local authenticated user to break out of restricted shells with “set context” and escalate privileges.
Broadcom Fabric Operating System
Broadcom Fabric Operating System 9.1.0
8.8
CVSSv3
CVE-2016-8202
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated malicious user to elevate the privileges of user accounts accessing the system via command line interf...
Broadcom Fabric Operating System 8.0.1
Broadcom Fabric Operating System
5.5
CVSSv3
CVE-2021-27798
A vulnerability in Brocade Fabric OS versions v7.4.1b and v7.3.1d could allow local users to conduct privileged directory transversal. Brocade Fabric OS versions v7.4.1.x and v7.3.x have reached end of life. Brocade Fabric OS Users should upgrade to supported versions as describe...
Broadcom Fabric Operating System 7.4.1b
Broadcom Fabric Operating System 7.3.1d
NA
CVE-2004-1663
Engenio/LSI Logic storage controllers, as used in products such as Storagetek D280, and IBM DS4100 (formerly FastT 100) and Brocade SilkWorm Switches, allow remote malicious users to cause a denial of service (freeze and possible data corruption) via crafted TCP packets.
Brocade Silkworm 3200
Brocade Silkworm 3250
Engenio Storage Controller 2882
Engenio Storage Controller 4884
Brocade Silkworm Fiber Channel Switch 2040
Brocade Silkworm Fiber Channel Switch 2050
Engenio Storage Controller 2822
Broadcom Fabric Operating System 2.2
Broadcom Fabric Operating System 3.1
Brocade Silkworm 3900
Brocade Silkworm Fiber Channel Switch 2010
Storagetek D280
Broadcom Fabric Operating System 2.1.2
Brocade Silkworm 3800
Brocade Silkworm 3850
Engenio Storage Controller 5884
Ibm Ds4100
7.8
CVSSv3
CVE-2022-33185
Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe string functions to process user input. Authenticated local attackers could abuse these vulnerabilities to exploit stack-based buffer overflows, allowing arbitrary code execution as the...
Broadcom Fabric Operating System
4.4
CVSSv3
CVE-2023-4163
In Brocade Fabric OS before v9.2.0a, a local authenticated privileged user can trigger a buffer overflow condition, leading to a kernel panic with large input to buffers in the portcfgfportbuffers command.
Broadcom Fabric Operating System
6.5
CVSSv3
CVE-2023-31426
The Brocade Fabric OS Commands “configupload” and “configdownload” before Brocade Fabric OS v9.1.1c, v8.2.3d, v9.2.0 print scp, sftp, ftp servers passwords in supportsave. This could allow a remote authenticated malicious user to access sensitive informat...
Broadcom Fabric Operating System
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »