Brocade

Fabric Operating System

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.3

CVE-2025-58381

  • EPSS 0.01%
  • Veröffentlicht 03.02.2026 06:15:52
  • Zuletzt bearbeitet 06.02.2026 20:53:22

A vulnerability in Brocade Fabric OS before 9.2.1c2 could allow an authenticated attacker with admin privileges using the shell commands “source, ping6, sleep, disown, wait to modify the path variables and move upwards in the directory structure ...

2.3

CVE-2025-58380

  • EPSS 0.01%
  • Veröffentlicht 03.02.2026 05:16:21
  • Zuletzt bearbeitet 06.02.2026 20:52:59

A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different director...

7.8

CVE-2026-0383

  • EPSS 0.01%
  • Veröffentlicht 03.02.2026 04:15:55
  • Zuletzt bearbeitet 06.02.2026 20:52:11

A vulnerability in Brocade Fabric OS could allow an authenticated, local attacker with privileges to access the Bash shell to access insecurely stored file contents including the history command.

9.8

CVE-2022-33186

  • EPSS 0.87%
  • Veröffentlicht 08.12.2022 22:15:10
  • Zuletzt bearbeitet 05.02.2026 14:35:42

A vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated attacker to execute on a Brocade Fabric OS switch commands capable of modifying zoning, disabling the switch, d...

5.7

CVE-2022-27774

Exploit
  • EPSS 0.31%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to ...

7.5

CVE-2022-27775

Exploit
  • EPSS 0.15%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead.

6.5

CVE-2022-27776

Exploit
  • EPSS 0.68%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

8.1

CVE-2022-22576

Exploit
  • EPSS 0.27%
  • Veröffentlicht 26.05.2022 17:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:03

An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticated connections without properly making sure that the connection was authenticated with the same credentials as set for th...

7.8

CVE-2021-22555

Warnung Exploit
  • EPSS 85.9%
  • Veröffentlicht 07.07.2021 12:15:08
  • Zuletzt bearbeitet 27.10.2025 17:06:32

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

5.5

CVE-2020-13632

  • EPSS 0.02%
  • Veröffentlicht 27.05.2020 15:15:13
  • Zuletzt bearbeitet 21.11.2024 05:01:38

ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.