Fabric Operating System Security Vulnerabilities and Issues — Fabric Operating System CVE List

Lucene search

BroadcomFabric Operating System

9 matches found

CVE•added 2024/07/09 12:15 p.m.•4336 views

CVE-2024-3596

RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.

9CVSS6.4AI score0.00883EPSS

CVE•added 2019/11/07 2:15 p.m.•214 views

CVE-2019-18805

An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or possibly unsp...

9.8CVSS9.1AI score0.00567EPSS

CVE•added 2022/02/21 6:15 p.m.•81 views

CVE-2021-27797

Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the system.

9.8CVSS9.4AI score0.01018EPSS

CVE•added 2024/04/04 5:15 p.m.•55 views

CVE-2023-3454

Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch.

9.8CVSS9.1AI score0.02796EPSS

CVE•added 2018/12/03 10:0 p.m.•44 views

CVE-2018-6440

A vulnerability in the proxy service of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote unauthenticated attackers to obtain sensitive information and possibly cause a denial of service attack.

9.1CVSS8.4AI score0.00601EPSS

CVE•added 2020/09/25 2:15 p.m.•41 views

CVE-2020-15371

Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, contains code injection and privilege escalation vulnerability.

9.8CVSS9.8AI score0.00571EPSS

CVE•added 2020/09/25 2:15 p.m.•41 views

CVE-2020-15373

Multiple buffer overflow vulnerabilities in REST API in Brocade Fabric OS versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c could allow remote unauthenticated attackers to perform various attacks.

9.8CVSS9.8AI score0.00926EPSS

CVE•added 2017/05/08 6:29 p.m.•38 views

CVE-2016-8202

A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected versio...

9CVSS9AI score0.01357EPSS

CVE•added 2020/09/25 2:15 p.m.•37 views

CVE-2020-15374

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input.

9.8CVSS9.4AI score0.00504EPSS