Login Sign Up

CVE-2023-31427

7.8 HIGH
Path Traversal

📋 TL;DR

This vulnerability allows authenticated local users on Brocade Fabric OS to execute arbitrary commands regardless of their assigned privileges by exploiting improper path validation. Affected systems include Brocade Fabric OS versions before v9.1.1c and v9.2.0, though root account access is disabled starting with v9.1.0.

💻 Affected Systems

Products:
  • Brocade Fabric OS
Versions: All versions before v9.1.1c and v9.2.0
Operating Systems: Brocade Fabric OS
Default Config Vulnerable: ⚠️ Yes
Notes: Root account is disabled by default starting with Fabric OS v9.1.0, but authenticated local users can still exploit this vulnerability.

📦 What is this software?

Fabric Operating System by Broadcom

View all CVEs affecting Fabric Operating System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise allowing an authenticated local attacker to execute any command as root, potentially leading to data theft, service disruption, or persistent backdoors.

🟠

Likely Case

Privilege escalation where a low-privileged authenticated user gains administrative control over the Fabric OS system.

🟢

If Mitigated

Limited impact if proper access controls restrict local user accounts and network segmentation isolates affected systems.

🌐 Internet-Facing: LOW - Requires local authenticated access, not directly exploitable over internet.
🏢 Internal Only: HIGH - Internal authenticated users can exploit this to gain full system control.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires authenticated local access and knowledge of full path names within the Fabric OS filesystem.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: v9.1.1c or later, v9.2.0 or later

Vendor Advisory: https://support.broadcom.com/external/content/SecurityAdvisories/0/22379

Restart Required: Yes

Instructions:

1. Download the appropriate patch from Broadcom support portal. 2. Apply the patch following Brocade Fabric OS update procedures. 3. Reboot the system as required by the update process.

🔧 Temporary Workarounds

Restrict Local User Access

all

Limit local user accounts to only trusted administrators and implement strict access controls.

Network Segmentation

all

Isolate Fabric OS management interfaces from general user networks to reduce attack surface.

🧯 If You Can't Patch

  • Implement strict access controls to limit local user accounts to essential personnel only.
  • Monitor system logs for unusual command execution patterns and implement network segmentation.

🔍 How to Verify

Check if Vulnerable:

Check Fabric OS version using 'version' command. If version is before v9.1.1c or v9.2.0, system is vulnerable.

Check Version:

version

Verify Fix Applied:

After patching, verify version is v9.1.1c or later, or v9.2.0 or later using 'version' command.

📡 Detection & Monitoring

Log Indicators:

  • Unusual command execution by non-admin users
  • Privilege escalation attempts in system logs

Network Indicators:

  • Unusual management interface connections from unexpected sources

SIEM Query:

Search for Fabric OS logs containing privilege escalation patterns or unauthorized command execution.

📊 Metadata

CVE ID: CVE-2023-31427
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-22
Published: August 1, 2023
Last Updated: February 13, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-31427, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)