CVE-2023-31926

EPSS 0.03%
Veröffentlicht 02.08.2023 01:15:09
Zuletzt bearbeitet 13.02.2025 17:16:28
Quelle sirt@brocade.com
Teams Watchlist Login
Unerledigt Login

System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Broadcom ≫ Brocade Fabric Operating System Version < 9.1.1c

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.08

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
sirt@brocade.com	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-281 Improper Preservation of Permissions

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

CWE-665 Improper Initialization

The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.

https://security.netapp.com/advisory/ntap-20230908-0007/

Third Party Advisory

https://support.broadcom.com/external/content/SecurityAdvisories/0/22388

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-31926

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-31926

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-31926

EUVD