Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom fabric operating system - vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2020-13645
In GNOME glib-networking up to and including 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server identity. This is in contrast to its intended documented behavi...
Gnome Balsa 2.6.0
Gnome Balsa
Gnome Glib-networking
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Netapp Cloud Backup -
Broadcom Fabric Operating System -
6.4
CVSSv2
CVE-2018-6440
A vulnerability in the proxy service of Brocade Fabric OS versions prior to 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote unauthenticated malicious users to obtain sensitive information and possibly cause a denial of service attack.
Broadcom Fabric Operating System
6.1
CVSSv2
CVE-2017-6227
A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) versions prior to 7.4.2b, 8.1.2 and 8.2.0 could allow an malicious user to cause a denial of service (CPU consumption and device hang) condition by sending crafted Router Adver...
Broadcom Fabric Operating System 8.0.0
Broadcom Fabric Operating System 8.0.1
Broadcom Fabric Operating System 8.1.1
Broadcom Fabric Operating System
Broadcom Fabric Operating System 8.1.0
Broadcom Fabric Operating System 8.0.2
Brocade Fabric Os 8.0.2b2
Broadcom Fabric Operating System 8.1.2
5.8
CVSSv2
CVE-2020-15387
The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0.0, and Brocade SANnav before v2.1.1 utilize keys of less than 2048 bits, which may be vulnerable to man-in-the-middle attacks and/or insecure SSH communications.
Broadcom Brocade Sannav
Broadcom Fabric Operating System
Broadcom Fabric Operating System 7.4.2
Broadcom Fabric Operating System 7.4.2a
Broadcom Fabric Operating System 7.4.2b
Broadcom Fabric Operating System 7.4.2c
Broadcom Fabric Operating System 7.4.2d
Broadcom Fabric Operating System 7.4.2f
Broadcom Fabric Operating System 7.4.2g
Broadcom Fabric Operating System 8.2.1
Broadcom Fabric Operating System 8.2.1a
Broadcom Fabric Operating System 8.2.1b
5.8
CVSSv2
CVE-2021-31879
GNU Wget up to and including 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.
Gnu Wget
Broadcom Brocade Fabric Operating System Firmware -
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp A250 Firmware -
Netapp 500f Firmware -
1 Github repository
5.8
CVSSv2
CVE-2020-35494
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This ...
Gnu Binutils
Fedoraproject Fedora 32
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Compute Node Firmware -
5.8
CVSSv2
CVE-2020-1927
In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL.
Apache Http Server
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Opensuse Leap 15.1
Netapp Oncommand Unified Manager Core Package -
Broadcom Brocade Fabric Operating System -
Oracle Sd-wan Aware 8.2
Oracle Instantis Enterprisetrack
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.2.1
Oracle Communications Element Manager 8.1.1
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Communications Session Report Manager 8.1.1
Oracle Communications Session Report Manager 8.2.0
Oracle Communications Session Report Manager 8.2.1
Oracle Communications Session Route Manager 8.1.1
Oracle Communications Session Route Manager 8.2.0
1 Github repository
5.5
CVSSv2
CVE-2022-22576
An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL...
Haxx Curl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Clustered Data Ontap -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire \\& Hci Storage Node -
Brocade Fabric Operating System -
Netapp Bootstrap Os -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
5.5
CVSSv2
CVE-2021-27791
The function that is used to parse the Authentication header in Brocade Fabric OS Web application service before Brocade Fabric OS v9.0.1a and v8.2.3a fails to properly process a malformed authentication header from the client, resulting in reading memory addresses outside the in...
Broadcom Fabric Operating System
5
CVSSv2
CVE-2021-45485
In the IPv6 implementation in the Linux kernel prior to 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresse...
Linux Linux Kernel
Netapp E-series Santricity Os Controller -
Netapp Solidfire \\& Hci Management Node -
Netapp Brocade Fabric Operating System Firmware -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Policy 22.2.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.1
Netapp All Flash Fabric-attached Storage 8300 Firmware -
Netapp Fabric-attached Storage 8300 Firmware -
Netapp All Flash Fabric-attached Storage 8700 Firmware -
Netapp Fabric-attached Storage 8700 Firmware -
Netapp Aff A400 Firmware -
Netapp Fabric-attached Storage A400 Firmware -
Netapp Hci Compute Node Firmware -
Netapp H300e Firmware -
Netapp H300s Firmware -
Netapp H410c Firmware -
Netapp H410s Firmware -
Netapp H500e Firmware -
Netapp H500s Firmware -
Netapp H610c Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »