Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-3489
HistoryAug 31, 2023 - 12:15 a.m.

CVE-2023-3489

2023-08-3100:15:07
CWE-312
[email protected]
web.nvd.nist.gov
brocade fabric os
clear text password
supportsave file
downgrade

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

JSON

The
firmwaredownload command on Brocade Fabric OS v9.2.0 could log the
FTP/SFTP/SCP server password in clear text in the SupportSave file when
performing a downgrade from Fabric OS v9.2.0 to any earlier version of
Fabric OS.

Affected configurations

NVD
Node
broadcomfabric_operating_systemMatch9.2.0

Related

cve 1
prion 1
broadcom 1
cvelist 1
cve
cve
CVE-2023-3489
2023-08-31 00:15:07
prion
prion
Design/Logic Flaw
2023-08-31 00:15:00
broadcom
broadcom
CVE-2023-3489 - firmwaredownload command could log servers passwords in clear text
2023-08-29 00:00:00
cvelist
cvelist
CVE-2023-3489 firmwaredownload command could log servers passwords in clear text
2023-08-30 23:56:07

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.2%

JSON
Related for NVD:CVE-2023-3489
cve1prion1broadcom1cvelist1