CVE-2025-58382

CWE-3053 documents3 sources
Severity
8.5HIGH
EPSS
0.1%
top 73.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom Fabric Operating SystemBrocade Fabric OS
Timeline
PublishedFeb 3

Description

A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5brocade/fabric_osbefore 9.2.1c2 and 9.2.2 through 9.2.2a
NVDbroadcom/fabric_operating_system9.2.29.2.2b+1

🔴Vulnerability Details

2
CVEList
Privilege escalation in Brocade Fabric before 9.2.1c2 and 9.2.2 through 9.2.2a2026-02-03
GHSA
GHSA-386j-565c-f86f: A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 92026-02-03
CVE-2025-58382 (HIGH CVSS 8.5) | A vulnerability in the secure confi | cvebase.io