Vulnerability Details CVE-2016-8206
A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary files, and consequently delete the files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.104
EPSS Ranking 92.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 6.4
References
- http://www.securityfocus.com/bid/95692
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179
- http://www.securityfocus.com/bid/95692
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179
Products affected by CVE-2016-8206
-
cpe:2.3:a:brocade:network_advisor:11.0.0.0
-
cpe:2.3:a:brocade:network_advisor:11.0.2.0