Brocade Communications Systems Inc Brocade Fabric Os vulnerabilities

12 known vulnerabilities affecting brocade_communications_systems_inc/brocade_fabric_os.

Total CVEs
12
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH8MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2018-6440CRITICALCVSS 9.1vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-12-03
CVE-2018-6440 [CRITICAL] CVE-2018-6440: A vulnerability in the proxy service of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4 A vulnerability in the proxy service of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote unauthenticated attackers to obtain sensitive information and possibly cause a denial of service attack.
cvelistv5nvd
CVE-2018-6439HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-12-03
CVE-2018-6439 [HIGH] CVE-2018-6439: A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) vers A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.
cvelistv5nvd
CVE-2018-6436HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6436 [HIGH] CVE-2018-6436: A Vulnerability in the firmwaredownload command of Brocade Fabric OS command line interface (CLI) ve A Vulnerability in the firmwaredownload command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.
cvelistv5nvd
CVE-2018-6434HIGHCVSS 7.5vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6434 [HIGH] CWE-384 CVE-2018-6434: A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1.2f, A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow attackers to intercept or manipulate a user's session ID.
cvelistv5nvd
CVE-2018-6442HIGHCVSS 8.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6442 [HIGH] CVE-2018-6442: A vulnerability in the Brocade Webtools firmware update section of Brocade Fabric OS before 8.2.1, 8 A vulnerability in the Brocade Webtools firmware update section of Brocade Fabric OS before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote authenticated attackers to execute arbitrary commands.
cvelistv5nvd
CVE-2018-6435HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6435 [HIGH] CVE-2018-6435: A Vulnerability in the secryptocfg command of Brocade Fabric OS command line interface (CLI) version A Vulnerability in the secryptocfg command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, and gain root access.
cvelistv5nvd
CVE-2018-6438HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6438 [HIGH] CVE-2018-6438: A Vulnerability in the supportsave command of Brocade Fabric OS command line interface (CLI) version A Vulnerability in the supportsave command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.
cvelistv5nvd
CVE-2018-6437HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6437 [HIGH] CVE-2018-6437: A Vulnerability in the help command of Brocade Fabric OS command line interface (CLI) versions befor A Vulnerability in the help command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, gain root access.
cvelistv5nvd
CVE-2018-6441HIGHCVSS 7.8vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6441 [HIGH] CVE-2018-6441: A vulnerability in Secure Shell implementation of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8 A vulnerability in Secure Shell implementation of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to provide arbitrary environment variables, and bypass the restricted configuration shell.
cvelistv5nvd
CVE-2018-6433MEDIUMCVSS 5.5vAll versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d2018-11-08
CVE-2018-6433 [MEDIUM] CWE-20 CVE-2018-6433: A vulnerability in the secryptocfg export command of Brocade Fabric OS versions before 8.2.1, 8.1.2f A vulnerability in the secryptocfg export command of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to bypass the export file access restrictions and initiate a file copy from the source to a remote system.
cvelistv5nvd
CVE-2017-6227MEDIUMCVSS 6.5vall versions before 7.4.2b, 8.1.2 and 8.2.02018-02-08
CVE-2017-6227 [MEDIUM] CVE-2017-6227: A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS (F A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) versions before 7.4.2b, 8.1.2 and 8.2.0 could allow an attacker to cause a denial of service (CPU consumption and device hang) condition by sending crafted Router Advertisement (RA) messages to a targeted system.
cvelistv5nvd
CVE-2017-6225MEDIUMCVSS 6.1vall versions before 7.4.2b, v8.1.2 and 8.2.02018-02-08
CVE-2017-6225 [MEDIUM] CWE-79 CVE-2017-6225: Cross-site scripting (XSS) vulnerability in the web-based management interface of Brocade Fibre Chan Cross-site scripting (XSS) vulnerability in the web-based management interface of Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) versions before 7.4.2b, 8.1.2 and 8.2.0 could allow remote attackers to execute arbitrary code or access sensitive browser-based information.
cvelistv5nvd