Shodan
Vulnerabilities
Vulnerable Software
Broadcom:  >> Fabric Operating System  >> 9.1.1d2  Security Vulnerabilities
CVE-2025-1976
Known exploited
Brocade Fabric OS versions starting with 9.1.0 have root access removed, however, a local user with admin privilege can potentially execute arbitrary code with full root privileges on Fabric OS versions 9.1.0 through 9.1.1d6.
CVSS Score
6.7
EPSS Score
0.017
Published
2025-04-24
CVE-2024-10403
Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-11-21
CVE-2024-7516
A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a switch admin.
CVSS Score
7.1
EPSS Score
0.0
Published
2024-11-12
CVE-2023-5973
Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent the portName to the user if the portName contains reserved characters. This could allow an authenticated user to alter the UI of the Brocade Switch and change ports display.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-04-05
CVE-2021-27795
Brocade Fabric OS (FOS) hardware platforms running any version of Brocade Fabric OS software, which supports the license string format; contain cryptographic issues that could allow for the installation of forged or fraudulent license keys. This would allow attackers or a malicious party to forge a counterfeit license key that the Brocade Fabric OS platform would authenticate and activate as if it were a legitimate license key.
CVSS Score
6.4
EPSS Score
0.0
Published
2023-12-06
CVE-2023-4163
In Brocade Fabric OS before v9.2.0a, a local authenticated privileged user can trigger a buffer overflow condition, leading to a kernel panic with large input to buffers in the portcfgfportbuffers command.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-08-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved