Lucene search
K

9 matches found

OSV
OSV
added 2025/12/09 4:17 p.m.4 views

CVE-2025-41750

An XSS vulnerability in pxcPortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS5.8AI score0.08404EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.7 views

PT-2025-49822

An XSS vulnerability in pxc PortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS6.3AI score0.08404EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 11:15 a.m.2 views

CVE-2024-7517

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

7.8CVSS7.2AI score0.00626EPSS
Exploits0References1
NVD
NVD
added 2024/11/21 11:15 a.m.24 views

CVE-2024-7517

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

8.5CVSS0.00626EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/21 5:53 a.m.31 views

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

8.5CVSS7.2AI score0.00626EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/21 5:53 a.m.37 views

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

8.5CVSS0.00626EPSS
Exploits0References1
CVE
CVE
added 2024/11/21 5:53 a.m.74 views

CVE-2024-7517

CVE-2024-7517 concerns a local, privileged escalation in Brocade Fabric OS prior to 9.2.0c and in 9.2.1–9.2.1a on IP Extension platforms (7810/7840/7850 or SX-6 blade on X6/X7). Exploitation requires an authenticated user on SSH/serial to craft portcfg usage. Root cause is a command-injection vul...

8.5CVSS6.9AI score0.00626EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.5 views

Broadcom Fabric OS 命令注入漏洞

Broadcom Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Broadcom Corporation USA. A command injection vulnerability exists in Broadcom Fabric OS versions 9.2.0c and 9.2.1 through 9.2.1a, which stems from a command injection that could lead t...

8.5CVSS7.2AI score0.00626EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.5 views

PT-2024-8869 · Brocade · Brocade X7 +6

Name of the Vulnerable Software and Affected Versions: Brocade Fabric OS versions prior to 9.2.0c Brocade Fabric OS versions 9.2.1 through 9.2.1a Description: The issue is related to a command injection vulnerability in the IPSEC component of Brocade Fabric OS, which could allow a local...

8.5CVSS7.6AI score0.00626EPSS
Exploits0References6
Rows per page
Query Builder