CVE-2023-5973

EPSS 0.2%
Published 05.04.2024 03:15:07
Last modified 13.02.2025 18:16:02
Source sirt@brocade.com
Teams watchlist Login
Open Login

Brocade
 Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not 
properly represent the portName to the user if the portName contains 
reserved characters. This could allow an authenticated user to alter the
 UI of the Brocade Switch and change ports display.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Broadcom ≫ Fabric Operating System Version >= 9.0.0 < 9.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.2%	0.416

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
sirt@brocade.com	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CWE-346 Origin Validation Error

The product does not properly verify that the source of data or communication is valid.

https://security.netapp.com/advisory/ntap-20240628-0005/

Third Party Advisory

https://support.broadcom.com/external/content/SecurityAdvisories/0/23214

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-5973

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-5973

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-5973

EUVD