Lucene search
K
BroadcomMost viewed

879 matches found

Broadcom
Broadcom
•added 2019/07/02 12:0 a.m.•6 views

BSA-2019-828

Security Advisory ID : BSA-2019-828 Component : TCP SACK Revision : 2.0 An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB da...

7.5CVSS6.7AI score0.94686EPSS
Exploits1
Broadcom
Broadcom
•added 2019/02/07 12:0 a.m.•6 views

BSA-2019-755

Security Advisory ID : BSA-2019-755 Component : Apache Revision : 1.0: Final Apache 2.4 vulnerabilities in Brocade Fibre Channel Products from Broadcom Multiple Brocade Fibre Channel technology products from Broadcom incorporate Apache httpd 2.4 librairies. Apache released in January 2019, a list...

7.5CVSS9.2AI score0.59942EPSS
Exploits0
Broadcom
Broadcom
•added 2018/11/02 12:0 a.m.•6 views

BSA-2018-740

Security Advisory ID : BSA-2018-740 Component : CPU featuring SMT Revision : 1.0: Initial A group a researchers has discover a new vulnerability being called PortSmash, impacting all CPUs that use a Simultaneous Multithreading SMT architecture. SMT is a technology that allows multiple computing...

4.7CVSS7.2AI score0.03418EPSS
Exploits4
Broadcom
Broadcom
•added 2018/09/20 12:0 a.m.•6 views

BSA-2018-708

Security Advisory ID : BSA-2018-708 Component : Ghostscript Revision : 1.0: Final Ghostscript contains an optional -dSAFER option, which is supposed to prevent unsafe PostScript operations. Multiple PostScript operations bypass the protections provided by -dSAFER, which can allow an attacker to...

9.3CVSS8.1AI score0.92499EPSS
Exploits4
Broadcom
Broadcom
•added 2018/08/15 12:0 a.m.•6 views

BSA-2018-690

Security Advisory ID : BSA-2018-690 Component : Kernel Revision : 1.0: Final The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending...

7.8CVSS6.6AI score0.24575EPSS
Exploits0
Broadcom
Broadcom
•added 2018/08/06 12:0 a.m.•6 views

BSA-2018-686

Security Advisory ID : BSA-2018-686 Component : Kernel Revision : 1.0: Final Linux kernel versions 4.9+ can be forced to make very expensive calls to tcpcollapseofoqueue and tcppruneofoqueue for every incoming packet which can lead to a denial of service. An attacker can induce a denial of servic...

7.8CVSS6.5AI score0.7354EPSS
Exploits0
Broadcom
Broadcom
•added 2018/05/08 12:0 a.m.•6 views

BSA-2018-601

Security Advisory ID : BSA-2018-601 Component : Kernel Revision : 1.0: Final In some circumstances, some operating systems or hypervisors may not expect or properly handle an Intel architecture hardware debug exception. The error appears to be due to developer interpretation of existing...

7.8CVSS6.6AI score0.18696EPSS
Exploits9
Broadcom
Broadcom
•added 2018/03/30 12:0 a.m.•6 views

BSA-2018-557

Security Advisory ID : BSA-2018-557 Component : Apache HTTPD Revision : 2.0: Final In Apache httpd, modauthnzldap, if configured with AuthLDAPCharsetConfig, uses the Accept-Language header value to lookup the right charset encoding when verifying the user's credentials. If the header value is not...

7.5CVSS6.8AI score0.18197EPSS
Exploits0
Broadcom
Broadcom
•added 2018/03/30 12:0 a.m.•6 views

BSA-2018-552

Security Advisory ID : BSA-2018-552 Component : Apache HTTPD Revision : 2.0: Final A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.33 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial...

7.5CVSS7.8AI score0.70783EPSS
Exploits0
Broadcom
Broadcom
•added 2018/03/30 12:0 a.m.•6 views

BSA-2018-559

Security Advisory ID : BSA-2018-559 Component : Apache HTTPD Revision : 2.0: Final Apache HTTP Server httpd modsession modulehas an improper input validation flaw in the way it handles HTTP session headers in some configurations. A remote attacker may influence their content by using a "Session"...

5.3CVSS6.7AI score0.10118EPSS
Exploits0
Broadcom
Broadcom
•added 2018/01/23 12:0 a.m.•6 views

CVE-2017-3737 - Read, write after SSL object in error state. (BSA-2018-527).

Security Advisory ID: BSA-2018-527 Component: OpenSSL Revision : 3.0: Final OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake, then OpenSSL would move into the error state and would immediately fail i...

5.9CVSS8.5AI score0.78675EPSS
Exploits1
Broadcom
Broadcom
•added 2017/11/17 12:0 a.m.•6 views

BSA-2017-453

Security Advisory ID : BSA-2017-453 Component : EDNS0 Revision : 2.0: Final A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and...

7.5CVSS6.7AI score0.84323EPSS
Exploits5
Broadcom
Broadcom
•added 2017/09/29 12:0 a.m.•6 views

BSA-2017-431

Security Advisory ID : BSA-2017-431 Component : Kernel Revision : 3.0: Interim A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the...

8CVSS8.1AI score0.16181EPSS
Exploits12
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•7 views

BSA-2017-398

Security Advisory ID : BSA-2017-398 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 7u141 and 8u131. Difficult to exploit vulnerability allows physical access to compromis...

7.1CVSS7.9AI score0.0063EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-399

Security Advisory ID : BSA-2017-399 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacke...

7.5CVSS7.8AI score0.03236EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-419

Security Advisory ID : BSA-2017-419 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...

5.3CVSS7.2AI score0.03114EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-421

Security Advisory ID : BSA-2017-421 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14...

5.9CVSS7.5AI score0.02598EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-415

Security Advisory ID : BSA-2017-415 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit...

3.1CVSS6.4AI score0.02224EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-408

Security Advisory ID : BSA-2017-408 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...

8.3CVSS8.6AI score0.03524EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-416

Security Advisory ID : BSA-2017-416 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacke...

4.3CVSS6.9AI score0.0222EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-402

Security Advisory ID : BSA-2017-402 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...

7.5CVSS8AI score0.05034EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-378

Security Advisory ID : BSA-2017-378 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet. Affected Products Brocade is investigating its product lines to determine which products...

7.5CVSS7AI score0.04759EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-384

Security Advisory ID : BSA-2017-384 Component : HEIMDAL/ KERBEROS 5 Revision : 2.0: Interim OHeimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In...

8.1CVSS6.8AI score0.05118EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-353

Security Advisory ID : BSA-2017-353 Component : Linux Kernel Revision : 3.0: Interim The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue t...

7.8CVSS7.2AI score0.01372EPSS
Exploits5
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-380

Security Advisory ID : BSA-2017-380 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extractx509extension. Affected Products Brocade is...

5.9CVSS7AI score0.03855EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-376

Security Advisory ID : BSA-2017-376 Component : Apache HTTPD Revision : 3.0: Final When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behavior...

7.5CVSS7.2AI score0.09507EPSS
Exploits0
Broadcom
Broadcom
•added 2017/08/25 12:0 a.m.•6 views

BSA-2017-418

Security Advisory ID : BSA-2017-418 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14...

5.3CVSS7.2AI score0.0345EPSS
Exploits0
Broadcom
Broadcom
•added 2017/06/23 12:0 a.m.•6 views

BSA-2017-343

Security Advisory ID : BSA-2017-343 Component : Kernel Revision : 3.0: Final The ip6appenddata function in net/ipv6/ip6output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite ofanskbdata structure may occur, which allows local users to cause a denial of service...

5.5CVSS6.2AI score0.00405EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-274

Security Advisory ID : BSA-2017-274 Component : Authfile.c in sshd in OpenSSH before 7.4 Revision : 3.0: Final authfile.cinsshdinOpenSSHbefore 7.4 does not properly consider the effects ofreallocon buffer contents, which might allow local users to obtain sensitive private-key information by...

6.2CVSS8.7AI score0.01101EPSS
Exploits1
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-313

Security Advisory ID : BSA-2017-313 Component : modcgid module in the Apache HTTP Server before 2.4.10 Revision : 2.0: Interim A flaw was found inmodcgid. If a server usingmodcgidhosted CGI scripts which did not consume standard input, a remote attacker could cause child processes to hang...

5CVSS8.5AI score0.43809EPSS
Exploits1
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-279

Security Advisory ID : BSA-2017-279 Component : JBOSS Revision : 2.0: Interim The Management Console in Red Hat Enterprise Application Platform before 6.4.4 andWildFlyformerlyJBossApplication Server does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduc...

4.3CVSS6.8AI score0.01709EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-296

Security Advisory ID : BSA-2017-296 Component : NTP Revision : 2.0: Interim Stack-based buffer overflow in thereslistfunction inntpqin NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a longflagstrvariable in a restriction list response. Affected...

8.8CVSS9.2AI score0.02682EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-306

Security Advisory ID : BSA-2017-306 Component : Apache Tomcat Revision : 1.0: Interim While investigating bug 60718, it was noticed that some calls to application listeners did not use the appropriate facade object. When running an untrusted application under aSecurityManager, it was therefore...

9.1CVSS6.6AI score0.13225EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-295

Security Advisory ID : BSA-2017-295 Component : NTP Revision : 1.0: Interim The mx4200send function in the legacy MX4200refclockin NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of thesnprintffunction, which allows local users to execute arbitrary code via...

7.8CVSS8.8AI score0.00481EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-294

Security Advisory ID : BSA-2017-294 Component : NTP Revision : 1.0: Interim Multiple buffer overflows in thectlput functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. Affected Products Brocade is investigating i...

8.8CVSS8.9AI score0.06515EPSS
Exploits0
Broadcom
Broadcom
•added 2017/05/02 12:0 a.m.•6 views

BSA-2017-265

Security Advisory ID : BSA-2017-265 Component : Linux Kernel Revision : 2.0: Interim Thedccprcvstateprocessfunction in net/dccp/input.cin the Linux kernel through 4.9.11 mishandles DCCPPKTREQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cau...

7.8CVSS7.7AI score0.0596EPSS
Exploits13
Broadcom
Broadcom
•added 2017/04/28 12:0 a.m.•6 views

BSA-2017-236

Security Advisory ID : BSA-2017-236 Component : Low Bandwidth ICMP Attack Revision : 1.0: Interim Blacknurseis a low bandwidth ICMP attack that is capable of doing denial of service towell knownfirewalls.MostICMP attacks that we see are based on ICMP Type 8 Code 0 also called a ping flood...

6.7AI score
Exploits0
Broadcom
Broadcom
•added 2017/04/28 12:0 a.m.•6 views

BSA-2017-243

Security Advisory ID : BSA-2017-243 Component : SNMP Revision : 1.0: Interim The Simple Network Management Protocol SNMP is a commonly used network service. Its primary function is to provide network administrators with information about all kinds of network connected devices. SNMP can be used to...

7.5CVSS6.8AI score0.10463EPSS
Exploits3
Broadcom
Broadcom
•added 2016/12/14 12:0 a.m.•6 views

BSA-2016-195

Security Advisory ID : BSA-2016-195 Component : OpenSSH Revision : 2.0: Final sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by...

5.9CVSS9.2AI score0.88944EPSS
Exploits12
Broadcom
Broadcom
•added 2016/10/17 12:0 a.m.•6 views

BSA-2016-011

Summary Security Advisory ID : BSA-2016-011 Component : OpenSSL Revision : 6.0 N/A...

7.5CVSS7AI score0.03137EPSS
Exploits0
Broadcom
Broadcom
•added 2016/06/10 12:0 a.m.•6 views

BSA-2016-007

Summary Security Advisory ID : BSA-2016-007 Component : Kernel Revision : 2.0 N/A...

6.2CVSS7AI score0.00595EPSS
Exploits0
Broadcom
Broadcom
•added 2016/05/10 12:0 a.m.•6 views

BSA-2016-019

Security Advisory ID : BSA-2016-019 Component : OpenSSH Revision : 3.0: Final Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the 1...

6.4CVSS7.3AI score0.37016EPSS
Exploits13
Broadcom
Broadcom
•added 2016/03/18 12:0 a.m.•6 views

BSA-2016-004

Summary Security Advisory ID : BSA-2016-004 Component : OpenSSH Revision : 5.0 N/A...

5.9CVSS7.7AI score0.82112EPSS
Exploits2
Broadcom
Broadcom
•added 2016/01/15 12:0 a.m.•6 views

BSA-2016-001

Summary Security Advisory ID : BSA-2016-001 Component : Java Revision : 2.0 N/A...

10CVSS4.9AI score0.06451EPSS
Exploits0
Broadcom
Broadcom
•added 2015/09/09 12:0 a.m.•6 views

BSA-2015-007

Summary Security Advisory ID : BSA-2015-007 Component : RC4 Algorithm Revision : 6.0 N/A...

5.9CVSS7.6AI score0.84424EPSS
Exploits0
Broadcom
Broadcom
•added 2015/05/26 12:0 a.m.•6 views

BSA-2014-001

Summary Security Advisory ID : BSA-2014-001 Component : N/A Revision : 2.0 N/A...

7AI score
Exploits0
Broadcom
Broadcom
•added 2015/03/19 12:0 a.m.•6 views

BSA-2015-002

Summary Security Advisory ID : BSA-2015-002 Component : NTP Revision : 7.0 N/A...

5CVSS6.3AI score0.16161EPSS
Exploits1
Broadcom
Broadcom
•added 2023/02/07 12:0 a.m.•5 views

Brocade Product Security Incident Response Team Contact Information

Brocade Communications Systems Brocade is committed to resolving vulnerabilities to meet the needs of its customers and the broader technology community. Brocade Product Security Incident Response Team Brocade PSIRT is a global team that manages the receipt, investigation and internal coordinatio...

6.5AI score
Exploits0
Broadcom
Broadcom
•added 2022/11/01 12:0 a.m.•5 views

CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows

Security Advisory ID : BSA-2022-2115 Component : OpenSSL Revision : 1.0 On November 1st, 2022 the OpenSSL Project disclosed CVE-2022-3602 and CVE-2022-3786 present in OpenSSL 3.0.x... The vulnerabilities were initially rated as critical severity vulnerabilities but are now disclosed as high. More...

7.5CVSS6.9AI score0.92488EPSS
Exploits6
Broadcom
Broadcom
•added 2020/06/16 12:0 a.m.•5 views

BSA-2020-1028

Security Advisory ID : BSA-2020-1028 Component : Call Stranger Revision : 1.0: Final A vulnerability in the UPnP SUBSCRIBE capability permits an attacker to send large amounts of data to arbitrary destinations accessible over the Internet, which could lead to a Distributed Denial of Service DDoS,...

7.8CVSS6.8AI score0.15193EPSS
Exploits3
Total number of security vulnerabilities879