57 matches found
CVE-2024-20294
A vulnerability in the Link Layer Discovery Protocol LLDP feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of specific fields i...
Brocade Fabric OS 资源管理错误漏洞
Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. A security vulnerability exists in Brocade Fabric OS versions v9.0 through v9.2.0a, which originates from a possible segmentation fault in Brocade Fabric OS that allows an...
CVE-2023-31928
A reflected cross-site scripting XSS vulnerability exists in Brocade Webtools PortSetting.html of Brocade Fabric OS version before Brocade Fabric OS v9.2.0 that could allow a remote unauthenticated attacker to execute arbitrary JavaScript code in a target user’s session with the Brocade Webtools...
PT-2023-23526 · Brocade · Brocade Fabric Os
Name of the Vulnerable Software and Affected Versions: Brocade Fabric OS versions prior to 9.1.1c Brocade Fabric OS versions prior to 9.2.0 Description: The issue allows system files to be overwritten using the less command. Recommendations: For Brocade Fabric OS versions prior to 9.1.1c, update ...
CVE-2023-31427
Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c, and v9.2.0 Could allow an authenticated, local user with knowledge of full path names inside Brocade Fabric OS to execute any command regardless of assigned privilege. Starting with Fabric OS v9.1.0, “root” account access is disabled...
CVE-2023-31425 - Privilege escalation via the fosexec command
A vulnerability in the fosexec command of Brocade Fabric OS after Brocade Fabric OS v9.1.0 and, before Brocade Fabric OS v9.1.1 could allow a local authenticated user to perform privilege escalation to root by breaking the rbash shell. Starting with Fabric OS v9.1.0, “root” account access is...
Security updates provided in Brocade Fabric OS v9.2.0, v9.1.1c, v8.2.3d
Dear Brocade Customer: This Advisory aims to inform you of Brocade Fabric OS Security updates in Brocade Fabric OS v9.2.0, v9.1.1c, and v8.2.3d. Please review the recently posted security advisories listed here: Updated Security Advisories...
Vulnerabilities fixed in Cisco Firepower and UCS Fabric Interconnect systems
Cisco has fixed vulnerabilities in FX-OS, as used in Firepower and UCS Fabric systems. The vulnerability with reference CVE-2023-20016 allows a malicious person with access to backups to gain access to the backup data from the vulnerable devices. This allows the malicious party gain access to the...
The vulnerability of the implementation of the AAA TACACS+ protocol in the Brocade Fabric OS operating system allows a intruder to trigger a service failure.
The vulnerability of the aaa tacacs+ protocol implementation in the Brocade Fabric OS operating system is related to deficiencies in the authentication mechanism. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
CVE-2022-33185
Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe string functions to process user input. Authenticated local attackers could abuse these vulnerabilities to exploit stack-based buffer overflows, allowing arbitrary code execution as the root user accoun...
Brocade Fabric OS 安全漏洞
Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. A security vulnerability exists in Brocade Fabric OS. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor's...
PT-2022-3073 · Brocade · Brocade Sannav +1
Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.2.0.2 Brocade SANnav versions prior to 2.1.1.8 Description: The issue is related to the storage of sensitive information in plain text. Specifically, the Brocade Fabric OS switch password is logged in plain...
Vulnerability fixed in Brocade Fabric OS
A vulnerability has been fixed in Brocade Fabric OS. There is at least one account with hardcoded credentials where the administrator is not forced to change the password by default. adjust. With the new versions of Fabric OS, this is now mandatory. Cisco has released updates to fix the...
The vulnerability of the Brocade Fabric OS operating system, related to deficiencies in authentication procedures, allows attackers to gain access to the system.
The vulnerability of the Brocade Fabric OS operating system is related to deficiencies in the authentication process. Exploiting this vulnerability allows an attacker to gain access to the system via telnet, SSH, or REST...
CVE-2021-27792
The request handling functions in web management interface of Brocade Fabric OS versions before v9.0.1a, v8.2.3a, and v7.4.2h do not properly handle malformed user input, resulting in a service crash. An authenticated attacker could use this weakness to cause the FOS HTTP application handler to...
CVE-2020-15383
Running security scans against the SAN switch can cause config and secnotify processes within the firmware before Brocade Fabric OS v9.0.0, v8.2.2d and v8.2.1e to consume all memory leading to denial of service impacts possibly including a switch panic...
Brocade Fabric OS 资源管理错误漏洞
Brocade Fabric OS FOS is an embedded operating system used in switches and routers and other devices from Brocade, U.S.A. A security vulnerability exists in Brocade Fabric OS that could be exploited by an attacker to trigger a fatal error via a security scan of Brocade Fabric OS to trigger a Deni...
HPESBST04137 rev.1 - HPE Fibre Channel and SAN Switches with Brocade Fabric OS (FOS) Prior to v8.2.3, Multiple Remote and Local Vulnerabilities
Potential Security Impact: Local: Arbitrary Code Execution, Unauthorized Write Access to the File System; Remote: Denial of Service DoS, Unauthorized Data Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Brocade 16Gb Fibre Channel SAN Switch for HPE Synergy - Prior to 8.2...
Brocade Fabric OS Encryption Issues Vulnerabilities
Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. Brocade Fabric OS has a cryptographic issue vulnerability that can be exploited by an attacker to act as a man-in-the-middle in order to read and write data within a session...
Vulnerabilities fixed in Brocade Fabric OS
Broadcom has released updates to fix vulnerabilities in Brocade Fabric OS. An authenticated malicious person without the proper LDAP group memberships could log into a switch as a regular user. The switch is only vulnerable to this to this when it is active in "Virtual Fabric" mode. Also, a local...