Vulnerability Details CVE-2021-27796
A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS v8.0.1b, v7.4.1d could allow an authenticated attacker within the restricted shell environment (rbash) as either the “user” or “factory” account, to read the contents of any file on the filesystem utilizing one of a few available binaries.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.8
References
Products affected by CVE-2021-27796
-
cpe:2.3:o:broadcom:fabric_operating_system:-
-
cpe:2.3:o:broadcom:fabric_operating_system:2.1.2
-
cpe:2.3:o:broadcom:fabric_operating_system:2.2
-
cpe:2.3:o:broadcom:fabric_operating_system:3.1
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5b
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.3.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.0
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1a