CVE-2025-4661

CWE-22Path Traversal3 documents3 sources
Severity
4.8MEDIUM
EPSS
0.0%
top 90.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Fabric Operating SystemBrocade Fabric OS
Timeline
PublishedJun 19

Description

A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local admin user to gain access to files outside the intended directory potentially leading to the disclosure of sensitive information. Note: Admin level privilege is required on the switch in order to exploit

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5brocade/fabric_osBrocade Fabric OS 9.1.0 through 9.2.2

🔴Vulnerability Details

2
CVEList
Path transversal vulnerability potentially leading to sensitive information disclosure2025-06-19
GHSA
GHSA-pr68-826j-hxwv: A path transversal vulnerability in Brocade Fabric OS 92025-06-19
CVE-2025-4661 (MEDIUM CVSS 4.8) | A path transversal vulnerability in | cvebase.io