Vulnerability Details CVE-2020-15375
Brocade Fabric OS versions before v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g contain an improper input validation weakness in the command line interface when secccrypptocfg is invoked. The vulnerability could allow a local authenticated user to run arbitrary commands and perform escalation of privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.3%
CVSS Severity
CVSS v3 Score 6.7
CVSS v2 Score 4.6
References
Products affected by CVE-2020-15375
-
cpe:2.3:o:broadcom:fabric_operating_system:-
-
cpe:2.3:o:broadcom:fabric_operating_system:2.1.2
-
cpe:2.3:o:broadcom:fabric_operating_system:2.2
-
cpe:2.3:o:broadcom:fabric_operating_system:3.1
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5b
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.3.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.0
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1c
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1e
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2e
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2e
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2h
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2j
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2b