Fabric Operating System@* Security Vulnerabilities and Issues — Fabric Operating System@* CVE List

Lucene search

BroadcomFabric Operating System*

12 matches found

CVE•added 2018/02/08 10:29 p.m.•51 views

CVE-2017-6227

A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) versions before 7.4.2b, 8.1.2 and 8.2.0 could allow an attacker to cause a denial of service (CPU consumption and device hang) condition by sending crafted Router Advertisement (RA) messages to a...

6.5CVSS6.2AI score0.00134EPSS

CVE•added 2018/11/08 2:29 p.m.•46 views

CVE-2018-6434

A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow attackers to intercept or manipulate a user's session ID.

7.5CVSS7.5AI score0.00391EPSS

CVE•added 2018/11/08 2:29 p.m.•45 views

CVE-2018-6433

A vulnerability in the secryptocfg export command of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to bypass the export file access restrictions and initiate a file copy from the source to a remote system.

5.5CVSS6.4AI score0.00025EPSS

CVE•added 2018/11/08 2:29 p.m.•44 views

CVE-2018-6435

A Vulnerability in the secryptocfg command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, and gain root access.

7.8CVSS7.7AI score0.00178EPSS

CVE•added 2018/11/08 7:29 p.m.•44 views

CVE-2018-6437

A Vulnerability in the help command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.

7.8CVSS7.7AI score0.00178EPSS

CVE•added 2018/12/03 10:0 p.m.•44 views

CVE-2018-6440

A vulnerability in the proxy service of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote unauthenticated attackers to obtain sensitive information and possibly cause a denial of service attack.

9.1CVSS8.4AI score0.00601EPSS

CVE•added 2018/11/08 2:29 p.m.•43 views

CVE-2018-6442

A vulnerability in the Brocade Webtools firmware update section of Brocade Fabric OS before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote authenticated attackers to execute arbitrary commands.

8.8CVSS8.2AI score0.01458EPSS

CVE•added 2018/02/08 10:29 p.m.•41 views

CVE-2017-6225

Cross-site scripting (XSS) vulnerability in the web-based management interface of Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) versions before 7.4.2b, 8.1.2 and 8.2.0 could allow remote attackers to execute arbitrary code or access sensitive browser-based information.

6.1CVSS6.2AI score0.00517EPSS

CVE•added 2018/11/08 7:29 p.m.•41 views

CVE-2018-6436

A Vulnerability in the firmwaredownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.

7.8CVSS7.7AI score0.00178EPSS

CVE•added 2018/11/08 2:29 p.m.•41 views

CVE-2018-6441

A vulnerability in Secure Shell implementation of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to provide arbitrary environment variables, and bypass the restricted configuration shell.

7.8CVSS7.6AI score0.00019EPSS

CVE•added 2018/11/08 7:29 p.m.•40 views

CVE-2018-6438

A Vulnerability in the supportsave command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.

7.8CVSS7.7AI score0.00178EPSS

CVE•added 2018/12/03 10:0 p.m.•39 views

CVE-2018-6439

A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.

7.8CVSS7.7AI score0.00039EPSS