CVE-2022-28169
published 2022-10-25CVE-2022-28169: Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9.1.1, v9.0.1e, and v8.2.3c could allow a low privilege webtools, user, to…
PriorityP350high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.70%
48.5th percentile
Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9.1.1, v9.0.1e, and v8.2.3c could allow a low privilege webtools, user, to gain elevated admin rights, or privileges, beyond what is intended or entitled for that user. By exploiting this vulnerability, a user whose role is not an admin can create a new user with an admin role using the operator session id. The issue was replicated after intercepting the admin, and operator authorization headers sent unencrypted and editing a user addition request to use the operator's authorization header.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | fabric_operating_system | >= 8.0.0 < 8.2.3c | 8.2.3c |
| broadcom | fabric_operating_system | >= 9.0.0 < 9.0.1e | 9.0.1e |
| broadcom | fabric_operating_system | >= 9.1.0 < 9.1.1 | 9.1.1 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_oracle5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-c4gp-696g-43xv: Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9
ghsa_unreviewed·2022-10-26
CVE-2022-28169 [HIGH] CWE-269 GHSA-c4gp-696g-43xv: Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9
Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9.1.1, v9.0.1e, and v8.2.3c could allow a low privilege webtools, user, to gain elevated admin rights, or privileges, beyond what is intended or entitled for that user. By exploiting this vulnerability, a user whose role is not an admin can create a new user with an admin role using the operator session id. The issue was replicated after intercepting the admin, and operator authorization headers sent unencrypted and editing a user addition request to use the operator's authorization header.
Oracle
Oracle Oracle Communications Risk Matrix: Policy (Eclipse Jetty) — CVE-2021-28169
vendor_oracle·2022-04-15·CVSS 5.3
CVE-2021-28169 [MEDIUM] Oracle Oracle Communications Risk Matrix: Policy (Eclipse Jetty) — CVE-2021-28169
Oracle Oracle Communications Risk Matrix: Policy (Eclipse Jetty) vulnerability
CVE: CVE-2021-28169
CVSS: 5.3
Protocol: HTTP
Remote exploit: Yes
Affected versions: Network
Advisory: cpuapr2022 (APR 2022)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://security.netapp.com/advisory/ntap-20230127-0001/https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2075https://security.netapp.com/advisory/ntap-20230127-0001/https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2075
2022-10-25
Published