Shodan
Vulnerabilities
Vulnerable Software
Broadcom:  Security Vulnerabilities
CVE-2023-27787
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint.
CVSS Score
7.5
EPSS Score
0.006
Published
2023-03-16
CVE-2023-23949
An authenticated user can supply malicious HTML and JavaScript code that will be executed in the client browser.
CVSS Score
5.4
EPSS Score
0.007
Published
2023-01-26
CVE-2023-23950
User’s supplied input (usually a CRLF sequence) can be used to split a returning response into two responses.
CVSS Score
6.1
EPSS Score
0.005
Published
2023-01-26
CVE-2023-23951
Ability to enumerate the Oracle LDAP attributes for the current user by modifying the query used by the application
CVSS Score
6.1
EPSS Score
0.005
Published
2023-01-26
CVE-2022-25631
Symantec Endpoint Protection, prior to 14.3 RU6 (14.3.9210.6000), may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated
CVSS Score
7.8
EPSS Score
0.0
Published
2023-01-20
CVE-2022-25626
An unauthenticated user can access Identity Manager’s management console specific page URLs. However, the system doesn’t allow the user to carry out server side tasks without a valid web session.
CVSS Score
5.3
EPSS Score
0.007
Published
2022-12-16
CVE-2022-25627
An authenticated administrator who has physical access to the environment can carry out Remote Command Execution on Management Console in Symantec Identity Manager 14.4
CVSS Score
6.7
EPSS Score
0.002
Published
2022-12-16
CVE-2022-25628
An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4
CVSS Score
8.8
EPSS Score
0.004
Published
2022-12-16
CVE-2022-33187
Brocade SANnav before v2.2.1 logs usernames and encoded passwords in debug-enabled logs. The vulnerability could allow an attacker with admin privilege to read sensitive information.
CVSS Score
5.5
EPSS Score
0.003
Published
2022-12-09
CVE-2022-33186
A vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated attacker to execute on a Brocade Fabric OS switch commands capable of modifying zoning, disabling the switch, disabling ports, and modifying the switch IP address.
CVSS Score
9.8
EPSS Score
0.009
Published
2022-12-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved