CVE-2023-31926

EPSS 0.03%
Published 02.08.2023 01:15:09
Last modified 13.02.2025 17:16:28
Source sirt@brocade.com
Teams watchlist Login
Open Login

System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0.

Affected products Warnungen 0 Metrics 3 CWE 2 References 5

Data is provided by the National Vulnerability Database (NVD)

Broadcom ≫ Brocade Fabric Operating System Version < 9.1.1c

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.08

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
sirt@brocade.com	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-281 Improper Preservation of Permissions

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

CWE-665 Improper Initialization

The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.

https://security.netapp.com/advisory/ntap-20230908-0007/

Third Party Advisory

https://support.broadcom.com/external/content/SecurityAdvisories/0/22388

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-31926

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-31926

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-31926

EUVD