Broadcom - Page 10 of Broadcom Most Viewed Vulnerabilities List

Broadcom•added 2025/10/15 12:0 a.m.•12 views

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing

GNU TLS is vulnerable to a denial-of-service DoS due to inefficient certificate processing in the libtasn1 library. An attacker could present a maliciously crafted certificate that contains a large amount of subject alternative name or name constraint inputs, potentially leading to excessive...

5.3CVSS6.9AI score0.01193EPSS

Broadcom•added 2025/07/15 12:0 a.m.•12 views

Netty Vulnerable to Denial-of-Service (DoS) via Uncontrolled Memory Allocation in 'HttpPostRequestDecoder' Component

Netty is vulnerable to denial-of-service DoS due to insufficient restrictions on the amount of memory that is allocated in the HttpPostRequestDecoder component. An attacker could exploit this by sending maliciously crafted data in order to cause an out-of-memory OOM error and a denial-of-service...

5.3CVSS6.8AI score0.0138EPSS

7.5CVSS6.7AI score0.00349EPSS

GNU Glibc Vulnerable to Memory Corruption via Heap Buffer Overflow during 'assert()' Failure (CVE-2025-0395)

GNU Glibc contains a memory corruption vulnerability that overflows the heap buffer by one or several bytes. The corruption occurs when the assert function fails under specific conditions. Heap buffer overflows are known to result in severe damage to the program's confidentiality, integrity, and...

8.8CVSS6.7AI score0.01375EPSS

Oracle Java SE Multiple Vulnerabilities (October 2024)

Oracle Java SE Multiple Vulnerabilities October 2024 CVE-2024-36138 CVSS 3.1 Base Score 8.1 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Brocade SANnav not affected: VEX Justification: Vulnerablecodecannotbecontolledbyadversary CVE-2023-42950 CVSS 3.1 Base Score 7.5 CVSS Vector:...

7.3CVSS6.8AI score0.00971EPSS

Azul Zulu Java Multiple Vulnerabilities (January 2025)

Azul Zulu Multiple Vulnerabilities January 2025 CVE-2025-0509 CVSS 3.1 Base Score 7.3 CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H Brocade SANnav not affected: VEX Justification: Vulnerablecodenotpresent CVE-2025-21502 CVSS 3.1 Base Score 4.8 CVSS Vector:...

8.8CVSS6.8AI score0.01375EPSS

Azul Zulu Java Multiple Vulnerabilities (October 2024)

Azul Zulu Multiple Vulnerabilities October 2024 CVE-2024-36138 CVSS 3.1 Base Score 8.1 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Brocade SANnav not affected: VEX Justification: Vulnerablecodenotpresent CVE-2023-42950 CVSS 3.1 Base Score 7.5 CVSS Vector:...

Broadcom•added 2025/06/10 12:0 a.m.•12 views

Linux Kernel SUN RPC Subsystem Vulnerable to Memory Corruption via Use-After-Free (UAF) in 'inet_put_port' Function

The Linux Kernel SUN RPC subsystem is vulnerable to memory corruption due to how a use-after-free UAF can occur in the inetputport function as a result of xsxprtfree being called before all sockets are closed. An attacker could abuse this flaw in order to corrupt kernel memory which could...

7.8CVSS9.7AI score0.00403EPSS

Broadcom•added 2024/12/12 12:0 a.m.•12 views

Brocade Fabric OS (8.2.3x Release) Vulnerability Disclosures

Brocade Security Advisories==================================================Previously disclosed Brocade Security Advisories in 8.2.3x releases CVEs addressed in FOS v8.2.3e1 CVE-2024-5461 Command or parameter injection via unique embedded switch SNMP commands PSIRT Risk:...

9.8CVSS8.5AI score0.77901EPSS

Exploits4

Broadcom•added 2024/08/06 12:0 a.m.•12 views

Multiple CVEs identified by vulnerability scanning tools addressed via Brocade ASCG v3.1.0

ASCG v3.1.0 utilizes Rocky Linux version 8.10, addressing a number of potential security vulnerabilities. A complete list of CVEs reported by Rocky Linux as being addressed in this update are provided in the ASCG v3.1.0 Release Notes. In addition, a number of CVEs identified via internal security...

8.1CVSS7.8AI score0.93305EPSS

Exploits23

Broadcom•added 2024/06/10 12:0 a.m.•12 views

Azul Zulu Java Multiple Vulnerabilities (2023-04-18)

CVE-2023-21930 CVSS 3.1 Base Score 7.4 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2023-21937 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21938 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N...

7.4CVSS6.8AI score0.02474EPSS

Broadcom•added 2024/04/30 12:0 a.m.•12 views

Security update provided in Brocade SANnav 2.3.0a and 2.3.1

Dear Brocade Customer: This Advisory aims to inform you of the security updates provided in Brocade SANnav 2.3.0a and 2.3.1. Please review the recently posted security advisories listed here: Newly created Brocade CVEs https://support.broadcom.com/external/content/SecurityAdvisories/0/23236...

9.8CVSS6.8AI score0.01797EPSS

Broadcom•added 2022/09/27 12:0 a.m.•12 views

CVE-2022-0778 - Infinite loop in BN_mod_sqrt() reachable when parsing certificates

Security Advisory ID: BSA-2022-1752 Component: OpenSSL Revision: 2.0 The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. More information is at https://www.openssl.org/news/secadv/20220315.txt Affected Products Broca...

7.5CVSS6.6AI score0.70561EPSS

Exploits2

Broadcom•added 2022/03/09 12:0 a.m.•12 views

BSA-2022-1747

Security Advisory ID : BSA-2022-1747 Component : Kernel Revision : 1.0 A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copypagetoiterpipe and pushpipe functions in the Linux kernel and could thus contain stale values. An...

7.8CVSS6.4AI score0.89063EPSS

Exploits100

Broadcom•added 2021/12/11 12:0 a.m.•12 views

BSA-2021-1652

Security Advisory ID : BSA-2021-1652 Component : JMSAppender in Log4j 1.2 Revision : 1.0 CVE-2021-4104 - JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. The attacker can provide TopicBindingName and...

7.5CVSS8.4AI score0.81147EPSS

Exploits9

Broadcom•added 2021/05/10 12:0 a.m.•12 views

BSA-2019-827

Security Advisory ID : BSA-2019-827 Component : Kernel Revision : 1.0 Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use...

7.5CVSS6.7AI score0.9166EPSS

Broadcom•added 2021/05/10 12:0 a.m.•12 views

BSA-2020-1037

Security Advisory ID : BSA-2020-1037 Component : Docker Engine Revision : 1.0 An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAPNETRAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive...

6CVSS6.9AI score0.02839EPSS

Broadcom•added 2017/05/17 12:0 a.m.•12 views

BSA-2017-270

Security Advisory ID : BSA-2017-270 Component : OpenSSH Revision : 2.0: Interim Theverifyhostkeyfunction insshconnect.cin the client inOpenSSH6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptableHostCertificate. Affected Products...

6.5CVSS6.9AI score0.01988EPSS

Broadcom•added 2017/03/31 12:0 a.m.•12 views

BSA-2017-206

Security Advisory ID : BSA-2017-206 Component : OpenSSL Revision : 1.0: Interim Severity: Moderate-Applications parsing invalid CMS structures can crash with a NULL pointerdereference. This is caused by a bug in the handling of the ASN.1 CHOICE typein OpenSSL 1.1.0 which can result in a NULL valu...

7.5CVSS6.8AI score0.213EPSS

Broadcom•added 2026/05/19 12:0 a.m.•11 views

Flask-Reuploaded vulnerable to Remote Code Execution via Server-Side Template Injection (CVE-2026-27641)

Flask-Reuploaded provides file uploads for Flask. A critical path traversal and extension bypass vulnerability in versions prior to 1.5.0 allows remote attackers to achieve arbitrary file write and remote code execution through Server-Side Template Injection SSTI. Flask-Reuploaded has been patche...

9.8CVSS6.5AI score0.01046EPSS

Broadcom•added 2026/01/27 12:0 a.m.•11 views

A denial of service vulnerability exists in curl

A denial of service vulnerability exists in curl v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using alarm and siglongjmp. When doi...

5.9CVSS6AI score0.02658EPSS

Broadcom•added 2025/10/15 12:0 a.m.•11 views

jwt-go allows excessive memory allocation during header parsing

golang-jwt is vulnerable to excessive memory allocation due to improper handling of the parse.ParseUnverified function. This could allow an attacker to cause significant memory consumption by sending a malicious request with an Authorization header containing many period characters...

7.5CVSS6.9AI score0.00693EPSS

Broadcom•added 2025/07/15 12:0 a.m.•11 views

CLI history displays inline passwords

A vulnerability in the ascgshell, of Brocade ASCG before 3.3.0 stores any command executed in the Command Line Interface CLI in plain text within the command history. A local authenticated user that can access sensitive information like passwords within the CLI history leading to unauthorized...

7.1CVSS6.6AI score0.00095EPSS

Broadcom•added 2025/06/10 12:0 a.m.•11 views

Linux Kernel Vulnerable to Dangling Pointer via Garbage Collector Racing Against Connect() in AF_UNIX Module

The Linux Kernel is vulnerable to a race condition in the AFUNIX garbage collector due to improper handling of socket connections. This could allow an attacker to cause memory corruption...

7CVSS6.9AI score0.00193EPSS

Broadcom•added 2025/02/27 12:0 a.m.•11 views

Rocky Linux Kernel update in Brocade ASCG 3.2.0 for RLSA-2024:4211, RLSA-2024:5101, RLSA-2024:8856

Brocade ASCG 3.2.0 contains a new Rocky Linux Kernel with security updates for numerous security vulnerabilities. kernel RLSA-2024:4211 CVE-2021-47353, CVE-2024-27410, CVE-2023-52881, CVE-2024-26759, CVE-2023-52626, CVE-2024-35789, CVE-2024-36004, CVE-2023-52813, CVE-2023-52781, CVE-2024-35853,...

9.1CVSS6.9AI score0.01401EPSS

Broadcom•added 2024/05/23 12:0 a.m.•11 views

Deserialization of Untrusted Data affecting org.apache.sshd:sshd-common package (CVE-2022-45047)

Class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider in Apache MINA SSHD = 2.9.1 uses Java deserialization to load a serialized java.security.PrivateKey. The class is one of several implementations that an implementor using Apache MINA SSHD can choose for loading the host keys ...

9.8CVSS6.4AI score0.03571EPSS

Broadcom•added 2023/11/07 12:0 a.m.•11 views

command injection in scp.c

The scp functionality in OpenSSH is vulnerable to command injection via backtick characters in the destination argument. The command will be run with the permissions of the user with which the files were copied on the remote server. To exploit this issue an attacker must manipulate a system...

7.8CVSS7.9AI score0.12996EPSS

Exploits6

Broadcom•added 2023/08/29 12:0 a.m.•11 views

Security updates provided in Brocade SANnav v2.2.2a and v2.3.0

Dear Brocade Customer: This Advisory aims to inform you of Brocade SANnav Security updates in Brocade SANnav v2.2.2a and v2.3.0. Please review the recently posted security advisories listed here: Updated Security Advisories https://support.broadcom.com/external/content/SecurityAdvisories/0/21225...

9.8CVSS6.5AI score0.99931EPSS

Exploits61

Broadcom•added 2022/10/20 12:0 a.m.•11 views

CVE-2022-42889. Apache Commons Text prior to 1.10.0 allows RCE when applied to untrusted input due to insecure interpolation defaults.

Security Advisory ID : BSA-2022-2096 Component : Apache Commons Text Revision : 1.1 Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "$prefix:name", where "prefix" is used to locate an...

9.8CVSS6.7AI score0.99931EPSS

Exploits41

Broadcom•added 2022/04/05 12:0 a.m.•11 views

BSA-2022-1770

Security Advisory ID : BSA-2022-1770 Component : SpringSource Spring Framework Revision : 1.0 CVE-2010-1622: SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing...

9.8CVSS8.2AI score0.99939EPSS

Exploits136

Broadcom•added 2021/12/11 12:0 a.m.•11 views

BSA-2021-1651

Security Advisory ID : BSA-2021-1651 Component : Apache Log4j Revision : 4.0 Brocade Security has become aware of Apache Log4j version 2.x remote code execution vulnerability CVE-2021-44228. Additional vulnerabilities CVE-2021-45046, CVE-2021-45105 and CVE-2021-44832 have also been identified...

10CVSS8AI score0.99999EPSS

Exploits352

Broadcom•added 2021/05/10 12:0 a.m.•11 views

BSA-2020-945

Security Advisory ID : BSA-2020-945 Component : SQLite Revision : 1.0 Various SQLite issues seen in SQLite versions through 3.31.1. CVE-2020-11656 - CVSS3.1 - 9.8 In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a...

9.8CVSS7.2AI score0.07407EPSS

Exploits2

Broadcom•added 2020/12/09 12:0 a.m.•11 views

AMNESIA:33. (BSA-2020-1167)

Security Advisory ID: BSA-2020-1167 Component: Open source TCP/IP stacks. Revision: 1.1 Forescout Research Labs discovered 33 vulnerabilities impacting millions of IoT, OT, and IT devices that present an immediate risk for organizations worldwide.These vulnerabilities are named AMNESIA:33. Detail...

9.8CVSS6.8AI score0.58695EPSS

Broadcom•added 2016/10/10 12:0 a.m.•11 views

BSA-2016-010

Summary Security Advisory ID : BSA-2016-010 Component : Linux Kernel Revision : 5.0 N/A...

5CVSS9.2AI score0.02483EPSS

Broadcom•added 2025/07/08 12:0 a.m.•10 views

Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute arbitrary code

Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute arbitrary code. Users are recommended to upgrade to version 1.11.4 or 1.12.0, which fix this issue...

7.3CVSS8.3AI score0.03278EPSS

Broadcom•added 2025/06/10 12:0 a.m.•10 views

Linux Kernel Vulnerable to Denial-of-Service (DoS) via NULL Pointer Dereference in 'rawv6_push_pending_frames()' Function in 'raw.c' File (CVE-2023-0394)

Linux Kernel contains a vulnerability that can lead to a NULL pointer dereference condition due to insufficient checks. Exploiting this vulnerability could allow an attacker to cause a denial-of-service DoS...

5.5CVSS6.6AI score0.01016EPSS

Broadcom•added 2025/02/27 12:0 a.m.•10 views

url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent

Brocade Wget contains an improper input validation vulnerability. An attacker could exploit this via theuserinfosubcomponent of a URI to cause insecure behavior which could potentially cause improper authentication, exposure of sensitive information, or other serious data integrity issues...

9.1CVSS6.8AI score0.00672EPSS

Broadcom•added 2025/02/27 12:0 a.m.•10 views

Brocade ASCG 3.2.0 web interface does not enforce HSTS, as defined by RFC 6797 for ports 8030 and 8100

Brocade ASCG before 3.2.0 WebGui is not enforcing HSTS, as defined by RFC 6797. HSTS is an optional response header that can be configured on the server to instruct the browser to only communicate via HTTPS. The lack of HSTS allows downgrade attacks, SSL-stripping man-in-the-middle attacks, and...

9.1CVSS6.9AI score0.00341EPSS

Broadcom•added 2025/02/13 12:0 a.m.•10 views

snappy-java Vulnerable to Denial-of-Service (DoS) due to Improper Input Validation in File 'SnappyInputStream.java'

In snappy-java the stream chunk processing implementation uses a user controlled value to define the size of an allocated array. A remote attacker may abuse this by creating a crafted input stream that causes an extremely large array to be allocated, or a negative array size to be used. Both case...

7.5CVSS6.8AI score0.01762EPSS

Broadcom•added 2025/02/03 12:0 a.m.•10 views

Security Advisory Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), Ivanti Secure Access Client (ISAC) (Multiple CVEs)

Brocade Security Team has become aware of CVEs for Ivanti Connect Secure ICS,Ivanti Policy Secure IPS and Ivanti Secure Access Client ISAC. Vulnerability Details CVE Number| Description| CVSS Score Severity| CVSS Vector| CWE| Impacted Products ---|---|---|---|---|--- CVE-2024-47905| A stack-based...

9.1CVSS8AI score0.02014EPSS

Broadcom•added 2022/12/24 12:0 a.m.•10 views

CVE-2022-47941, CVE-2022-47942, CVE-2022-47938, CVE-2022-47939, CVE-2022-47940. Vulnerabilities affecting the ksmb module in the Linux kernel versions 5.14 through 5.15.61. (BSA-2022-2157).

Security Advisory ID: BSA-2022-2157 Component: ksmbd module in the Linux kernel Revision: 2.1 Brocade PSIRT has become aware of several vulnerabilities affecting theksmbdmodule in the Linux kernel published by Trend Micro Zero Day Initiative. ZDI-22-1687 - CVSS SCORE: 5.3 - CVE-2022-47941...

9.8CVSS6.8AI score0.58461EPSS

Broadcom•added 2022/04/04 12:0 a.m.•10 views

BSA-2022-1768

Security Advisory ID : BSA-2022-1768 Component : Spring Cloud Revision : 1.0 In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in...

9.8CVSS7.6AI score0.99939EPSS

Exploits36

Broadcom•added 2022/04/04 12:0 a.m.•10 views

BSA-2022-1769

Security Advisory ID : BSA-2022-1769 Component : Spring Framework RCE Revision : 1.0 Brocade PSIRT has become aware ofan RCE vulnerability in the Spring Framework. A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution RCE via data binding. More...

9.8CVSS8AI score0.99677EPSS

Exploits100

Broadcom•added 2022/03/02 12:0 a.m.•10 views

BSA-2022-1680

Security Advisory ID : BSA-2022-1680 Component : Apache Log4j Revision : 2.0 CVE-2022-23302 is a high severity deserialization vulnerability in JMSSink. JMSSink uses JNDI in an unprotected manner allowing any application using the JMSSink to be vulnerable if it is configured to reference an...

9.8CVSS8.8AI score0.6906EPSS

Exploits4

Broadcom•added 2020/07/06 12:0 a.m.•10 views

BSA-2020-1046

Security Advisory ID : BSA-2020-1046 Component : Apache Tomcat Revision : 1.0: Final When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory e.g. redirecting to '/foo/' when the user requested '/foo' a speciall...

4.3CVSS6.7AI score0.94494EPSS

Broadcom•added 2017/11/17 12:0 a.m.•10 views

BSA-2017-447

Security Advisory ID : BSA-2017-447 Component : Apache Revision : 2.0: Final When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled e.g. via setting the readonly initialisation parameter of the Default servlet to fals...

8.1CVSS8.7AI score0.99988EPSS

Exploits22

Broadcom•added 2017/09/08 12:0 a.m.•10 views

BSA-2017-427

Security Advisory ID : BSA-2017-427 Component : Apache Struts 2 Revision : 2.0: Interim The REST Plugin in Apache Struts2 is usingaXStreamHandlerwith an instance ofXStreamfor deserialization without any type filtering which could lead to Remote Code Execution whendeserializingXML payloads. An...

8.1CVSS9.1AI score0.99461EPSS

Exploits23

Broadcom•added 2017/08/25 12:0 a.m.•10 views

BSA-2017-356

Security Advisory ID : BSA-2017-356 Component : Heap Stack Revision : 2.0: Interim A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw ...

7.4CVSS6.8AI score0.05186EPSS