CVE-2026-0869 Application User custom defined accounts are not properly password protected in Brocade ASCG 3.4.0

Authentication bypass in Brocade ASCG 3.4.0 Could allow an unauthorized user to perform ASCG operations related to Brocade Support LinkBSL and streaming configuration. and could even disable the ASCG application or disable use of BSL data collection on Brocade switches within the fabric...

CVE-2026-0869

CVE-2026-0869 describes an authentication bypass in Brocade ASCG 3.4.0, enabling an unauthorized user to perform ASCG operations related to Brocade Support Link (BSL) and streaming configuration. The vulnerability could also disable the ASCG application or disable BSL data collection on fabric sw...

Brocade ASCG 安全漏洞

Brocade ASCG is a networking feature from Brocade USA that is primarily used to simplify SAN architecture and optimize resource utilization. A security vulnerability exists in Brocade ASCG versions prior to 3.3.0, which stems from the CLI history storing commands in clear text, which could lead t...

Brocade ASCG 安全漏洞

Brocade ASCG is a networking feature from Brocade USA that is primarily used to simplify SAN architecture and optimize resource utilization. A security vulnerability exists in Brocade ASCG versions prior to 3.2.0 that stems from not enforcing HSTS and is vulnerable to degradation attacks and...

Apache Struts: Mixing setters for uploaded files and normal fields can allow bypass file upload checks (CVE-2024-53677)

Brocade Security Team has become aware of a critical Remote Code Execution affecting Apache Struts. Detail An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code...

Security Updates Delivered with ASCG v3.0

Dear Brocade Customer: This Advisory aims to inform you of Brocade ASCG security updates in Brocade ASCG v3.0. Please review the recently posted security advisories listed here: Updated Security Advisories to show these are now addressed in Brocade ASCG v3.0 CVE-2018-25032...

BSA-2022-1832

Security Advisory ID : BSA-2022-1832 Component : NGINX Revision : 1.0 Brocade PSIRT has become aware of thesecurity vulnerabilities in the NGINX LDAP reference implementation publicly shared on09 April 2022. More information is available at "Addressing Security Weaknesses in the NGINX LDAP...

BSA-2020-1174

Security Advisory ID : BSA-2020-1174 Component : Theft of FireEye Red Team Tools Revision : 1.0 Brocade Security is aware of the news reporting the Theft of FireEye Red Team Tools by a highly sophisticated threat actor. More information atTheft of FireEye Red Team Tools...