Broadcom

Fabric Operating System

95 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-29661

  • EPSS 0.3%
  • Veröffentlicht 09.12.2020 17:15:31
  • Zuletzt bearbeitet 21.11.2024 05:24:23

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.

4.4

CVE-2020-29660

Exploit
  • EPSS 0.07%
  • Veröffentlicht 09.12.2020 17:15:31
  • Zuletzt bearbeitet 21.11.2024 05:24:22

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.

5.4

CVE-2018-6447

  • EPSS 0.3%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:10:41

A Reflective XSS Vulnerability in HTTP Management Interface in Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g could allow authenticated attackers with access to the web interface to hijack ...

7.5

CVE-2018-6448

  • EPSS 0.6%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:10:42

A vulnerability in the management interface in Brocade Fabric OS Versions before Brocade Fabric OS v9.0.0 could allow a remote attacker to perform a denial of service attack on the vulnerable host.

6.1

CVE-2018-6449

  • EPSS 0.27%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:10:42

Host Header Injection vulnerability in the http management interface in Brocade Fabric OS versions before v9.0.0 could allow a remote attacker to exploit this vulnerability by injecting arbitrary HTTP headers

8.8

CVE-2020-15369

  • EPSS 0.22%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:05:25

Supportlink CLI in Brocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c does not obfuscate the password field, which could expose users’ credentials of the remote server. An authenticated user could obtain the exposed ...

6.5

CVE-2020-15370

  • EPSS 0.25%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:05:25

Brocade Fabric OS versions before Brocade Fabric OS v7.4.2g could allow an authenticated, remote attacker to view a user password in cleartext. The vulnerability is due to incorrectly logging the user password in log files.

5.5

CVE-2020-15372

  • EPSS 0.07%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:05:26

A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2.2a1, 8.2.2c, v7.4.2g, v8.2.0_CBN3, v8.2.1e, v8.1.2k, v9.0.0, could allow a local authenticated attacker to modify shell variables, which may lead to an e...

9.8

CVE-2020-15373

  • EPSS 0.93%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:05:26

Multiple buffer overflow vulnerabilities in REST API in Brocade Fabric OS versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c could allow remote unauthenticated attackers to perform various attacks.

9.8

CVE-2020-15374

  • EPSS 0.5%
  • Veröffentlicht 25.09.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:05:26

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input.