Fabric Operating System Security Vulnerabilities and Issues — Fabric Operating System CVE List

Lucene search

BrocadeFabric Operating System

10 matches found

CVE•added 2021/07/07 12:15 p.m.•652 views

CVE-2021-22555

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

8.3CVSS8.3AI score0.84311EPSS

CVE•added 2022/06/02 2:15 p.m.•345 views

CVE-2022-27776

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

6.5CVSS7.3AI score0.00647EPSS

CVE•added 2020/05/27 3:15 p.m.•314 views

CVE-2020-13631

SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.

5.5CVSS6.7AI score0.00111EPSS

CVE•added 2020/05/27 3:15 p.m.•293 views

CVE-2020-13630

ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.

7CVSS7.5AI score0.00177EPSS

CVE•added 2022/06/02 2:15 p.m.•267 views

CVE-2022-27774

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols ...

5.7CVSS6.7AI score0.0025EPSS

CVE•added 2022/05/26 5:15 p.m.•248 views

CVE-2022-22576

An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. This affects SASL-enabled protocols:...

8.1CVSS8AI score0.00296EPSS

CVE•added 2020/05/27 3:15 p.m.•238 views

CVE-2020-13632

ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.

5.5CVSS6.2AI score0.00064EPSS

CVE•added 2022/06/02 2:15 p.m.•224 views

CVE-2022-27775

An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead.

7.5CVSS7.1AI score0.00122EPSS

CVE•added 2022/12/08 10:15 p.m.•169 views

CVE-2022-33186

A vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated attacker to execute on a Brocade Fabric OS switch commands capable of modifying zoning, disabling the switch, disabling ports, and modifying the switch IP addre...

9.8CVSS9.5AI score0.00927EPSS

CVE•added 2023/08/31 1:15 a.m.•28 views

CVE-2023-4162

Asegmentation fault can occur in Brocade Fabric OS after Brocade FabricOS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfgcommand. Thiscould allow an authenticated privileged user local user to crash aBrocade Fabric OS swith using the cli “passwdcfg --set -expire-minDiff“.

4.4CVSS4.4AI score0.00023EPSS