CVE-2025-58380 — Path Traversal: '.../...//' in Fabric Operating System

CWE-35 — Path Traversal: '.../...//'3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.0%

top 99.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Fabric Operating System Brocade Fabric OS

Timeline

PublishedFeb 3

Description

A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different directories.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5brocade/fabric_osbefore 9.2.1

▶NVDbroadcom/fabric_operating_system< 9.2.1

🔴Vulnerability Details

CVEList

Directory transversal vulnerability in Brocade Fabric OS before 9.2.1 using grep command↗2026-02-03

▶

GHSA

GHSA-27q7-gwcr-rrqp: A vulnerability in Brocade Fabric OS before 9↗2026-02-03

▶