Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-31427

Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c, and v9.2.0 Could allow an authenticated, local user with knowledge of full path names inside Brocade Fabric OS to execute any command regardless of assigned privilege. Starting with Fabric OS v9.1.0, “root” account access is disabled.

Published

2023-08-01T23:15:28.770

Last Modified

2025-02-13T17:16:28.123

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Secondary
CWE-22
Type: Primary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	broadcom	fabric_operating_system	< 9.1.1c	Yes

References

https://security.netapp.com/advisory/ntap-20230908-0007/ Third Party Advisory ([email protected])
https://support.broadcom.com/external/content/SecurityAdvisories/0/22379 Vendor Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20230908-0007/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.broadcom.com/external/content/SecurityAdvisories/0/22379 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)