879 matches found
BSA-2017-180
Security Advisory ID : BSA-2017-180 Component : BNA Revision : 1.0: Final A Directory Traversal Vulnerability inCliMonitorReportServletin the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files including files with sensitive...
BSA-2017-178
Security Advisory ID : BSA-2017-178 Component : BNA Revision : 1.0: Final A Directory Traversal Vulnerability inDashboardFileReceiveServletin the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload malicious file in a section of the file...
Pip Vulnerable to Path Traversal via Lack of Symbolic Link Validation in 'unpacking.py' File
Pip is vulnerable to path traversal due to a lack of validation for symbolic links when Pip is used with instances of python which do not implement PEP 706. This could allow a remote attacker to extract a tar file outside of the intended directory...
Null pointer dereference found in openldap
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in bermemallocx function...
Curl vulnerabilities detected in SANnav images (CVE-2025-4947, CVE-2025-5025)
The Curl vulnerabilities identified are located within open source components utilized by Brocade SANnav, however the vulnerable code is not compiled into the final product. As a part of good security practice, the open source component was updated in the SANnav 3.0.0 release. CVE-2025-4947 libcu...
libcurl's ASN1 parser code has the GTime2str() function, used for parsing an ASN.1 (CVE-2024-7264)
A flaw was found in libcurl, where libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If a syntactically incorrect field is given, the parser can use -1 for the length of the time fraction , leading to a strlen performed on a pointer to a heap...
Password Exposure in Brocade Fabric OS before 9.2.1 (CVE-2025-58379)
Brocade Fabric OS before 9.2.1 has a vulnerability that could allow a local authenticated attacker to reveal command line passwords using commands that may expose higher privilege sensitive information by a lower privileged user...
Privilege escalation via bind command in Brocade Fabric OS (CVE-2025-58383)
A vulnerability in Brocade Fabric OS versions before 9.2.1c2 could allow an administrator-level user to execute the bind command, to escalate privileges and bypass security controls allowing the execution of arbitrary commands...
Brocade SANnav DataBase password in plain text is logged in failover logs (CVE-2025-12680)
Brocade SANnav before Brocade SANnav 2.4.0b logs database passwords in clear text in the standby Brocade SANnav server, after disaster recovery failover. The vulnerability could allow a remote authenticated attacker with admin privilege able to access the SANnav logs or the supportsave to read th...
The DisableForwarding directive does not fully adhere to the intended functionality as documented (CVE-2025-32728).
Brocade has become aware of an Expected Behavior Violation vulnerability in OpenSSH releases 7.4 through 9.9. In affected versions of sshd, the DisableForwarding directive does not disable X11 and agent forwarding, which may allow unintended access under certain configurations...
Nessus detected vulnerability in the Brocade OVA base image (CVE-2025-21991)
In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes Currently, loadmicrocodeamd iterates over all NUMA nodes, retrieves their CPU masks and unconditionally accesses per-CPU data for the first CPU of each mask...
Libexpat: expat: improper restriction of xml entity expansion depth in libexpat
Libexpat contains a denial-of-service DoS vulnerability. A remote attacker could exploit this by chaining together an excessive number of general entities. Malicious use of this linear entity chain would subsequently result in uncontrolled recursion, leading to a stack overflow and crash...
Certifi Vulnerable to Insufficient Verification of Data Authenticity via GlobalTrust Root Certificate
Certifi contains an insufficient verification of data authenticity vulnerability. The withdrawal of the GLOBALTRUST root certificate has been performed. This could result in users experiencing compliance issues. Products Not Affected Brocade Fabric OS VEX Justification: Componentnotpresent Brocad...
Rocky Linux Updates in ASCG 3.3.0a (OVA)
Multiple Rocky Linux updates applied to Brocade ASCG 3.3.0a RockyLinux 8:perl RLSA-2025:11805 perl: Perl threads have a working directory race condition where file operations may target unintended paths CVE-2025-40909 RockyLinux 8:libxslt RLSA-2025:3615 libxslt: Use-After-Free in libxslt numbers....
Medium Strength Cipher Suites detected on port on ports 9000 and 8036
Brocade ASCG before 3.3.0 allows for the use of medium strength cryptography algorithms on ports 9000 and 8036. Those ports are internal ports...
Oracle Java SE Multiple Vulnerabilities (October 2024)
Oracle Java SE Multiple Vulnerabilities October 2024 CVE-2024-36138 CVSS 3.1 Base Score 8.1 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Brocade SANnav not affected: VEX Justification: Vulnerablecodecannotbecontolledbyadversary CVE-2023-42950 CVSS 3.1 Base Score 7.5 CVSS Vector:...
Multiple Rocky Linux updates applied to Brocade SANnav OVA 2.4.0a
Multiple Rocky Linux updates applied to Brocade SANnav base OS OVA deployment 2.4.0a RockyLinux 8: bind RLSA-2024:5524 BIND's database will be slow if a very large number of RRs exist at the same name CVE-2024-1737 SIG0 can be used to exhaust CPU resources CVE-2024-1975 RockyLinux 8: bind...
PostgreSQL Memory disclosure in aggregate function calls (CVE-2023-5868)
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes,...
Heap buffer overflow in libwebp (CVE-2023-4863)
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Products Confirmed Not Affected No Brocade Fibre Channel products from Broadcom are known to be affected by this...
BSA-2019-764
Security Advisory ID : BSA-2019-764 Component : OpenSSH Revision : 1.0: Final Use-after-free vulnerability in the mmanswerpamfreectx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to sen...
BSA-2017-247
Security Advisory ID : BSA-2017-247 Component : OpenSSH Revision : 3.0: Final Theauthpasswordfunction inauth-passwd.cinsshdinOpenSSHbefore 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service crypt CPU consumption via a long...
BSA-2017-222
Security Advisory ID : BSA-2017-222 Component : ntp Revision : 1.0: Interim Windows:ntpdDoSby oversized UDP packet. Class:Failure to Handle Exceptional Conditions. Affected Products Product| Current Assessment ---|--- Brocade 5600vRouter| Impacted: Fixed in 17.1.0...
BSA-2017-219
Security Advisory ID : BSA-2017-219 Component : ntp Revision : 1.0: Interim An exploitable configuration modification vulnerability exists in the control mode mode 6 functionality ofntpd. If, against long-standing BCP recommendations, "restrict defaultnoquery..." is not specified, a specially...
Linux kernel's block_invalidatepage in fs/buffer.c in the filesystem
A vulnerability was found in the Linux kernel's blockinvalidatepage in fs/buffer.c in the filesystem. A missing sanity check may allow a local attacker with user privilege to cause a denial of service DOS problem...
Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses
Faulty input validation in the core of Apache allows malicious or exploitable backend/content generators to split HTTP responses. This issue affects Apache HTTP Server: through 2.4.58...
Glib GVariant deserialization fails to validate input
A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...
A heap out-of-bounds read flaw was found in builtin.c in the gawk package
A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information...
Multiple Vulnerabilities in Node.js (Wednesday, May 14, 2025 Security Releases). Nessus Plugin ID 236766
In Node.js, the ReadFileUtf8 internal binding leaks memory due to a corrupted pointer in uvfss.file: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory...
Directory transversal vulnerability in Brocade Fabric OS before 9.2.1 using grep command (CVE-2025-58380)
A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different directories...
Oracle Java SE Updates (July 2025)
Oracle Java SE Multiple Vulnerabilities July 2025 CVE-2025-50059 CVE-2025-30749 CVE-2025-50106 CVE-2025-23166 CVE-2025-30754...
Low-level invalid GF(2^m) parameters lead to OOB memory access
Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Impact summary: Out of bound memory writes can lead to an application crash or even a possibility of a remote code execution,...
Plaintext Switch admin login password is seen in Brocade SANnav support save (CVE-2025-12772)
Brocade SANnav before 2.4.0b logs the Brocade Fabric OS Switch admin password on the SANnav support save logs. When OOM occurs on a Brocade SANnav server, the call stack trace for the Brocade switch is also collected in the heap dump file which contains this switch password in clear text. The...
Improper Privilege Management vulnerability in Apache Kafka Client
Apache Kafka Clients are vulnerable to improper privilege management due to the use of ConfigProvider plugins that can read from disk or environment variables. This could allow an attacker to read arbitrary contents of the disk and environment variables, potentially escalating from REST API acces...
Azul Zulu Java Multiple Vulnerabilities (October 2024)
Azul Zulu Multiple Vulnerabilities October 2024 CVE-2024-36138 CVSS 3.1 Base Score 8.1 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Brocade SANnav not affected: VEX Justification: Vulnerablecodenotpresent CVE-2023-42950 CVSS 3.1 Base Score 7.5 CVSS Vector:...
Multiple vulnerabilities detected in PostgreSQL
Multiple PostgreSQL vulnerability updates CVE-2025-1094-PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CVE-2024-10979-PostgreSQL PL/Perl environment variable changes execute arbitrary code CVE-2024-10978-PostgreSQL SET ROLE, SET SESSION AUTHORIZATI...
Path traversal vulnerability in functional web frameworks (CVE-2024-38819)
Spring Framework is vulnerable to a path traversal issue due to a lack of sufficient sanitization of path sequences processed by the WebMvc.fn or WebFlux.fn functional web frameworks. A remote attacker could submit crafted HTTP requests to an application that serves static resources through the...
Linux Kernel SUN RPC Subsystem Vulnerable to Memory Corruption via Use-After-Free (UAF) in 'inet_put_port' Function
The Linux Kernel SUN RPC subsystem is vulnerable to memory corruption due to how a use-after-free UAF can occur in the inetputport function as a result of xsxprtfree being called before all sockets are closed. An attacker could abuse this flaw in order to corrupt kernel memory which could...
Brocade Fabric OS (8.2.3x Release) Vulnerability Disclosures
Brocade Security Advisories==================================================Previously disclosed Brocade Security Advisories in 8.2.3x releases CVEs addressed in FOS v8.2.3e1 CVE-2024-5461 Command or parameter injection via unique embedded switch SNMP commands PSIRT Risk:...
Azul Zulu Java Multiple Vulnerabilities (2023-04-18)
CVE-2023-21930 CVSS 3.1 Base Score 7.4 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2023-21937 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21938 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N...
Oracle Java SE Multiple Vulnerabilities (April 2023 CPU)
CVE-2023-21930 CVSS 3.1 Base Score 7.4 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2023-21937 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21938 CVSS 3.1 Base Score 3.7 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N...
Statement on Jetty vulnerabilities in Brocade SANav
A Security Researcher performing penetration testing raises CVEs in the Jetty version used by Brocade SANnav v2.1.1. Brocade Statement All supported versions of Brocade SANnav do not directly use Jetty. The code is present within some versions of the SANnav product as it is contained within other...
Security update provided in Brocade SANnav 2.3.0a and 2.3.1
Dear Brocade Customer: This Advisory aims to inform you of the security updates provided in Brocade SANnav 2.3.0a and 2.3.1. Please review the recently posted security advisories listed here: Newly created Brocade CVEs https://support.broadcom.com/external/content/SecurityAdvisories/0/23236...
BSA-2020-1166
Security Advisory ID : BSA-2020-1166 Component : OpenSSL Revision : 1.0 The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different instances of a...
BSA-2018-743
Security Advisory ID : BSA-2018-743 Component : Hard-coded Credentials Revision : 3.1: Final A vulnerability in Brocade Network Advisor could allow an unauthenticated, remote attacker to log into the JMX Console of an affected system using an undocumented User credentials. The vulnerability is du...
BSA-2017-426
Security Advisory ID : BSA-2017-426 Component : OpenSSL Revision : 1.0: Interim While parsing anIPAddressFamilyextension in an X.509 certificate, it is possible to do a one-byteoverread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is...
BSA-2017-328
Security Advisory ID : BSA-2017-328 Component : JAVA SE Networking Revision : 3.0: Final Vulnerability in the Java SE, Java SE Embedded,JRockitcomponent of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121; Java SE Embedded:...
BSA-2017-322
Security Advisory ID : BSA-2017-322 Component : JAVA SE AWT Revision : 3.0: Final Vulnerability in the Java SE component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 7u131 and 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with...
BSA-2017-321
Security Advisory ID : BSA-2017-321 Component : JAVA SE Revision : 3.0: Final Vulnerability in the Java SE component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121. Difficult to exploit vulnerability allows unauthenticated attacker wi...
BSA-2017-259
Security Advisory ID : BSA-2017-259 Component : Weak ciphers such as RC4-MD5 Revision : 1.0: Interim If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually...
BSA-2014-002
Summary Security Advisory ID : BSA-2014-002 Component : OpenSSL Revision : 1.7 N/A...