PT-2025-9137

Name of the Vulnerable Software and Affected Versions Brocade ASCG versions prior to 3.2.0 Description The issue concerns the lack of HTTP Strict Transport Security HSTS enforcement in the web interface, as defined by RFC 6797. HSTS is an optional response header that can be configured on the...

CVE-2023-5973 Truncated port name

Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent the portName to the user if the portName contains reserved characters. This could allow an authenticated user to alter the UI of the Brocade Switch and change ports display...

CVE-2023-3454

Remote code execution RCE vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch...

CVE-2023-3454

Remote code execution RCE vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch...

An Improper Input Validation vulnerability for the registered case credentials (CVE-2023-5649)

An Improper Input Validation vulnerability for the registered case credentials in Brocade ASCG before v3.0 could allow a local authenticated user to provide invalid inputs like special characters leading to a Denial of Service DoS when collecting “supportsave” from a Brocade Switch...

Brocade Switch NetworkOS Version Detection

Binary data 700578.prm...

OS Identification : SNMP sysObjectID

The remote operating system can be identified by querying its sysObjectID object using SNMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid44344; scriptversion"1.28"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/04/09"; scriptnameenglish:"OS...