CVE-2019-16204Log File Information Exposure in Fabric Operating System

CWE-532Log File Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 42.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Fabric Operating SystemBrocade Fabric OS
Timeline
PublishedFeb 5
Latest updateMay 24

Description

Brocade Fabric OS Versions before v7.4.2f, v8.2.2a, v8.1.2j and v8.2.1d could expose external passwords, common secrets or authentication keys used between the switch and an external server.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5brocade/brocade_fabric_osBrocade Fabric OS Versions before v7.4.2f, v8.1.2j and v8.2.1d, v8.2.2a+2
NVDbroadcom/fabric_operating_system8.1.28.1.2j+3

🔴Vulnerability Details

2
GHSA
GHSA-hv33-rwqm-j3fw: Brocade Fabric OS Versions before v72022-05-24
CVEList
CVE-2019-16204: Brocade Fabric OS Versions before v72020-02-05
CVE-2019-16204 — Log File Information Exposure | cvebase