CVE-2023-5973

EPSS 0.2%
Veröffentlicht 05.04.2024 03:15:07
Zuletzt bearbeitet 13.02.2025 18:16:02
Quelle sirt@brocade.com
Teams Watchlist Login
Unerledigt Login

Brocade
 Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not 
properly represent the portName to the user if the portName contains 
reserved characters. This could allow an authenticated user to alter the
 UI of the Brocade Switch and change ports display.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Broadcom ≫ Fabric Operating System Version >= 9.0.0 < 9.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.2%	0.416

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
sirt@brocade.com	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE-346 Origin Validation Error

The product does not properly verify that the source of data or communication is valid.

https://security.netapp.com/advisory/ntap-20240628-0005/

Third Party Advisory

https://support.broadcom.com/external/content/SecurityAdvisories/0/23214

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-5973

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-5973

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-5973

EUVD