Lucene search
K
BroadcomBrocade Fabric Operating System

11 matches found

CVE
CVE
added 2020/04/01 11:8 p.m.5896 views

CVE-2020-1927

CVE-2020-1927 affects Apache HTTP Server 2.4.0–2.4.41, where mod_rewrite redirects intended to be self-referential could be fooled by encoded newlines and redirect to an unexpected URL within the request. Multiple connected advisories confirm the issue and indicate that fixes were released in Apa...

6.1CVSS6.7AI score0.56691EPSS
CVE
CVE
added 2020/04/28 6:7 p.m.527 views

CVE-2020-12243

CVE-2020-12243 affects OpenLDAP’s slapd in filter.c, where LDAP search filters with nested boolean expressions can cause a denial-of-service (daemon crash). Public advisories note fixes by upgrading OpenLDAP to newer releases (e.g., 2.4.50+; related entries reference 2.4.58 in a CloudLinux adviso...

7.5CVSS7.4AI score0.04423EPSS
CVE
CVE
added 2021/04/22 6:0 p.m.363 views

CVE-2021-23133

CVE-2021-23133 is a race condition in the Linux kernel SCTP sockets (net/sctp/socket.c) prior to 5.12-rc8. If sctp_destroy_sock executes without sock_net(sk)->sctp.addr_wq_lock, an element is removed from the auto_asconf_splist list without proper locking, enabling a local attacker with networ...

7CVSS7.4AI score0.00482EPSS
CVE
CVE
added 2021/01/04 2:24 p.m.188 views

CVE-2020-35507

CVE-2020-35507 (binutils) concerns a NULL pointer dereference in bfd_pef_parse_function_stubs in bfd/pef.c when processing crafted files with objdump, affecting versions prior to 2.34. This is a Binutils issue that can impact availability. The Astra Linux security bulletin mirrors this flaw and c...

5.5CVSS5.7AI score0.01234EPSS
CVE
CVE
added 2023/08/01 11:53 p.m.72 views

CVE-2023-31928

CVE-2023-31928 describes a reflected XSS in Brocade Webtools PortSetting.html of Brocade Fabric OS prior to v9.2.0. An unauthenticated remote attacker could execute arbitrary JavaScript in a target user’s Webtools session. Affected: Fabric OS with Webtools before 9.2.0. Impact: cross-site scripti...

6.3CVSS6AI score0.00391EPSS
CVE
CVE
added 2023/08/02 12:6 a.m.70 views

CVE-2023-31927

CVE-2023-31927 describes an information disclosure in the web interface of Brocade Fabric OS. A remote, unauthenticated attacker could obtain technical details about the web interface on affected devices. Affected versions are Brocade Fabric OS prior to v9.2.0 and prior to v9.1.1c. Remediation av...

5.3CVSS5.1AI score0.00484EPSS
CVE
CVE
added 2023/08/01 11:41 p.m.68 views

CVE-2023-31428

CVE-2023-31428 details (Brocade Fabric OS) : A command-line vulnerability affects Brocade Fabric OS prior to 9.1.1c and 9.2.0, enabling a local attacker to dump files from the user’s home directory via grep. The vulnerability, described across multiple sources (NVD/NCSC/Red Hat Red Hat CVE entry)...

5.5CVSS5.4AI score0.00167EPSS
CVE
CVE
added 2023/08/01 11:31 p.m.64 views

CVE-2023-31430

CVE-2023-31430 describes a buffer overflow in the Brocade Fabric OS CLI command “secpolicydelete.” An authenticated privileged user can trigger a crash of the Fabric OS switch, resulting in a denial of service. The issue affects Brocade Fabric OS before versions 9.1.1c and 9.2.0. The available co...

5.5CVSS5.6AI score0.0026EPSS
CVE
CVE
added 2023/08/01 11:23 p.m.64 views

CVE-2023-31431

CVE-2023-31431 describes a buffer overflow in the Brocade Fabric OS (FOS) diagstatus command. The issue could allow an authenticated user to crash the Brocade Fabric OS switch, resulting in a denial of service. Affected products are Brocade Fabric OS versions prior to v9.2.0 and prior to v9.1.1c....

5.5CVSS5.7AI score0.0026EPSS
CVE
CVE
added 2023/08/02 12:22 a.m.58 views

CVE-2023-31926

CVE-2023-31926 affects Brocade Fabric OS: arbitrary file overwrite via the less command in affected OS versions. The vulnerability arises in system file handling and can overwrite critical files when using less on vulnerable releases. Affected products/versions include Brocade Fabric OS prior to ...

7.1CVSS7AI score0.00148EPSS
CVE
CVE
added 2023/08/01 11:58 p.m.57 views

CVE-2023-31432

CVE-2023-31432 enables local privilege escalation in Brocade Fabric OS by abusing commands such as portcfgupload, configupload, license, and myid. The affected product is Brocade Fabric OS (FOS) prior to versions 9.1.1c and 9.2.0, where a non-privileged user could obtain root privileges through m...

7.8CVSS7.8AI score0.00159EPSS