Lucene search
+L

43 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/08/30 11:39 p.m.57 views

Security Bulletin: Vulnerability in Fabric OS firmware used by IBM b-type SAN directors and switches.

Summary Public disclosed vulnerability from OpenSSL in the Fabric OS FOS used by IBM b-type SAN directors and switches. Vulnerability Details CVEID:CVE-2022-0778 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw in the BNmodsqrt function when parsing certificates. By usi...

7.5CVSS7.7AI score0.70561EPSS
Exploits2Affected Software1
Openbugbounty
Openbugbounty
added 2022/06/18 8:16 a.m.14 views

fos-bos-hof.de Cross Site Scripting vulnerability OBB-2655151

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/01/31 5:6 a.m.6 views

fos-bos-hof.de Cross Site Scripting vulnerability OBB-2350419

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Prion
Prion
added 2021/08/12 3:15 p.m.11 views

Cross site request forgery (csrf)

The request handling functions in web management interface of Brocade Fabric OS versions before v9.0.1a, v8.2.3a, and v7.4.2h do not properly handle malformed user input, resulting in a service crash. An authenticated attacker could use this weakness to cause the FOS HTTP application handler to...

7.2CVSS7.3AI score0.00272EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2021/08/12 2:24 p.m.52 views

CVE-2021-27792

CVE-2021-27792 affects Brocade Fabric OS with a flaw in the web management interface: input validation failure for malformed requests can crash the FOS HTTP application handler, causing a DoS and reboot requirement. Affected products include Brocade Fabric OS versions before 9.0.1a, 8.2.3a, and 7...

7.8CVSS7.3AI score0.00272EPSS
Exploits0References3Affected Software1
Broadcom
Broadcom
added 2021/05/10 12:0 a.m.36 views

BSA-2021-1490

Security Advisory ID : BSA-2021-1490 Component : Web Management Interface Revision : 1.1 The request handling functions in web management interface of Brocade Fabric OS versions before v9.0.1a, v8.2.3a, and v7.4.2h do not properly handle malformed user input, resulting in a service crash. An...

5.3CVSS7.4AI score0.00272EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/05 10:58 p.m.25 views

Security Bulletin: Vulnerability in Fabric OS used by IBM b-type SAN directors and switches.

Summary Public disclosed vulnerability from OpenSSL in the Fabric OS used by IBM b-type SAN directors and switches. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. If the GENERALNAMEcmp function contain an...

5.9CVSS5.8AI score0.06968EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/03/31 9:56 p.m.20 views

Security Bulletin: Vulnerability in the Fabric OS used by IBM b-type SAN directors and switches.

Summary Brocade Fabric OS versions before v9.0.0 and after version v8.1.0, configured in Virtual Fabric mode contain a weakness in the ldap implementation . Vulnerability Details CVEID: CVE-2020-15376 DESCRIPTION: Broadcom Brocade Fabric OS could allow a remote attacker to bypass security...

4.3CVSS0.2AI score0.00869EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/28 11:37 p.m.47 views

Security Bulletin: OpenSSL (Publicly disclosed vulnerability) for IBM b-type switches and directors

Summary Fixes are released for OpenSSL Publicly disclosed vulnerability for IBM b-type switches and directors. Vulnerability Details CVEID: CVE-2019-1547 DESCRIPTION: OpenSSL could allow a local authenticated attacker to obtain sensitive information, caused by the ability to construct an EC group...

4.7CVSS0.4AI score0.03838EPSS
Exploits0Affected Software1
Openbugbounty
Openbugbounty
added 2020/01/23 10:48 a.m.9 views

fos-pindl.de Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1073289 Security Researcher badmaxx Helped patch 1673 vulnerabilities Received 5 Coordinated Disclosure badges Received 5 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting fos-pindl.de website and it...

0.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/08 6:39 p.m.32 views

Security Bulletin: Vulnerability in the Fabric OS used by IBM b-type SAN directors and switches.

Summary Public disclosed vulnerability from OpenSSL in the Fabric OS used by IBM b-type SAN directors and switches. Vulnerability Details CVEID: CVE-2018-0735 DESCRIPTION: The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use...

5.9CVSS0.8AI score0.04763EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/07 10:14 p.m.28 views

Security Bulletin: Vulnerability in Fabric OS used by IBM b-type SAN directors and switches.

Summary Public disclosed vulnerability from OpenSSL in the Fabric OS used by IBM b-type SAN directors and switches. Vulnerability Details CVEID: CVE-2018-0737 DESCRIPTION: The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker...

5.9CVSS0.9AI score0.12046EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/08 6:55 p.m.48 views

Security Bulletin: Multiple vulnerabilities in Java SDK affect IBM b-type SAN directors and switches.

Summary There are multiple vulnerabilities in SDK Java™ affecting IBM b-type SAN directors and switches. These issues were disclosed as part of the Java SDK updates in July 2018. Vulnerability Details CVEID: CVE-2018-2952 DESCRIPTION: An unspecified vulnerability related to the Java SE Concurrenc...

10CVSS1.5AI score0.26335EPSS
Exploits1Affected Software1
Broadcom
Broadcom
added 2018/09/28 12:0 a.m.18 views

BSA-2018-539

Security Advisory ID : BSA-2018-539 Component : OpenSSH Revision : 2.0: Final The resendbytes function in roamingcommon.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffe...

6.5CVSS6.5AI score0.63468EPSS
Exploits2
Openbugbounty
Openbugbounty
added 2018/02/15 2:52 p.m.11 views

fos-bos-traunstein.de XSS vulnerability

Open Bug Bounty ID: OBB-560443 Description| Value ---|--- Affected Website:| fos-bos-traunstein.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Prion
Prion
added 2018/02/08 10:29 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in the web-based management interface of Brocade Fibre Channel SAN products running Brocade Fabric OS FOS versions before 7.4.2b, 8.1.2 and 8.2.0 could allow remote attackers to execute arbitrary code or access sensitive browser-based information...

4.3CVSS6.3AI score0.01458EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2018/02/08 10:29 p.m.19 views

Race condition

A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS FOS versions before 7.4.2b, 8.1.2 and 8.2.0 could allow an attacker to cause a denial of service CPU consumption and device hang condition by sending crafted Router Advertisement RA messages to a...

6.1CVSS6.3AI score0.00552EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2018/02/08 10:0 p.m.55 views

CVE-2017-6225

CVE-2017-6225 affects Brocade Fabric OS Web GUI: cross-site scripting due to improper input validation in the web-based management interface. A remote attacker could execute arbitrary script in a victim’s browser or access sensitive information. Affected products include Brocade Fibre Channel SAN...

6.1CVSS6.2AI score0.01458EPSS
Exploits0References2Affected Software2
Broadcom
Broadcom
added 2017/04/28 12:0 a.m.17 views

BSA-2017-247

Security Advisory ID : BSA-2017-247 Component : OpenSSH Revision : 3.0: Final Theauthpasswordfunction inauth-passwd.cinsshdinOpenSSHbefore 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service crypt CPU consumption via a long...

7.8CVSS7AI score0.58568EPSS
Exploits5
NVD
NVD
added 2016/08/22 10:59 a.m.13 views

CVE-2016-4376

HPE FOS before 7.4.1d and 8.x before 8.0.1 on StoreFabric B switches allows remote attackers to obtain sensitive information via unspecified vectors...

7.8CVSS6.3AI score0.0215EPSS
Exploits0References2
Rows per page
Query Builder