The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. An attacker who has compromised the FOS system may utilize this weakness to capture sensitive information, such as user credentials.
Brocade Fabric OS versions before v9.0.1a and v8.2.3a
Products Confirmed Not Vulnerable
No other Brocade Fibre Channel Products from Broadcom products are currently known to be affected by this vulnerability.
A security update has been provided in Brocade Fabric OS version v9.0.1a and v8.2.3a
This issue was discovered through security testing.
Version | Change | Date
1.0 | Initial Publication | May 10, 2021