Vulnerability Details CVE-2023-31429
Brocade Fabric OS before Brocade Fabric OS 9.1.1c, 9.2.0 contains a vulnerability when using various commands such as “chassisdistribute”, “reboot”, “rasman”, errmoduleshow, errfilterset, hassiscfgperrthreshold, supportshowcfgdisable and supportshowcfgenable commands that can cause the content of shell interpreted variables to be printed in the terminal.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.1%
CVSS Severity
CVSS v3 Score 5.5
References
- https://security.netapp.com/advisory/ntap-20230908-0007/
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22408
- https://security.netapp.com/advisory/ntap-20230908-0007/
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22408
Products affected by CVE-2023-31429
-
cpe:2.3:o:broadcom:fabric_operating_system:-
-
cpe:2.3:o:broadcom:fabric_operating_system:2.1.2
-
cpe:2.3:o:broadcom:fabric_operating_system:2.2
-
cpe:2.3:o:broadcom:fabric_operating_system:3.1
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5
-
cpe:2.3:o:broadcom:fabric_operating_system:5.0.5b
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0
-
cpe:2.3:o:broadcom:fabric_operating_system:5.2.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.3.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.0
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1c
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.1e
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2e
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2g
-
cpe:2.3:o:broadcom:fabric_operating_system:7.4.2h
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.0.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.0c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2e
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2f
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2h
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2j
-
cpe:2.3:o:broadcom:fabric_operating_system:8.1.2k
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.0
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1d
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1e
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2a1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2b
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2c
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.3
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.3a
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.3a1
-
cpe:2.3:o:broadcom:fabric_operating_system:8.2.3d
-
cpe:2.3:o:broadcom:fabric_operating_system:9.0.0
-
cpe:2.3:o:broadcom:fabric_operating_system:9.0.0a
-
cpe:2.3:o:broadcom:fabric_operating_system:9.0.0b
-
cpe:2.3:o:broadcom:fabric_operating_system:9.0.1
-
cpe:2.3:o:broadcom:fabric_operating_system:9.0.1a
-
cpe:2.3:o:broadcom:fabric_operating_system:9.1.0
-
cpe:2.3:o:broadcom:fabric_operating_system:9.1.1