Lucene search
BrocadeCVE-2023-31428HistoryAug 02, 2023 - 12:15 a.m.
CVE-2023-31428
2023-08-0200:15:16
CWE-434
brocade
web.nvd.nist.gov
37
brocade
fabric os
cve-2023-31428
vulnerability
command line
local user
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.4
Confidence
High
EPSS
0
Percentile
5.1%
Brocade Fabric OS before Brocade Fabric OS v9.1.1c, v9.2.0 contains a vulnerability in the command line that could allow a local user to dump files under user’s home directory using grep.
Affected configurations
Node
broadcombrocade_fabric_operating_systemRange<9.1.1c
ORbroadcombrocade_fabric_operating_systemMatch9.2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| broadcom | brocade_fabric_operating_system | * | cpe:2.3:o:broadcom:brocade_fabric_operating_system:*:*:*:*:*:*:*:* |
| broadcom | brocade_fabric_operating_system | 9.2.0 | cpe:2.3:o:broadcom:brocade_fabric_operating_system:9.2.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Fabric OS",
"vendor": "Brocade",
"versions": [
{
"status": "affected",
"version": "before Brocade Fabric OS v9.1.1c, v9.2.0"
}
]
}
]Related
broadcom
broadcom
CVE-2023-31428 - CLI allows upload or transfer files of dangerous types
2023-08-01 00:00:00
cvelist
cvelist
CVE-2023-31428 CLI allows upload or transfer files of dangerous types
2023-08-01 23:41:41
prion
prion
Input validation
2023-08-02 00:15:00
nvd
nvd
CVE-2023-31428
2023-08-02 00:15:16
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.4
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2023-31428