cbcvebase.
CVE-2018-6439
published 2018-12-03

CVE-2018-6439: A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a…

PriorityP339high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.35%
26.8th percentile
A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.

Affected

6 ranges
VendorProductVersion rangeFixed in
broadcomfabric_operating_system>= 7.4.2 < 7.4.2d7.4.2d
broadcomfabric_operating_system>= 8.0.2 < 8.0.2f8.0.2f
broadcomfabric_operating_system>= 8.1.2 < 8.1.2f8.1.2f
broadcomfabric_operating_system>= 8.2.0 < 8.2.18.2.1
brocade_communications_systems_incbrocade_fabric_os
googlechrome_chrome

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.