📦 Fabric Operating System
by Broadcom
🔍 What is Fabric Operating System?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2024-3596 allows a local attacker to forge RADIUS protocol responses by exploiting MD5 collisions, enabling them to modify authentication outcomes. This affects any system using RADIUS under RFC 2...
This critical vulnerability in Brocade Fabric OS allows remote unauthenticated attackers to execute arbitrary commands on affected switches. Attackers can modify zoning, disable switches/ports, and ch...
This vulnerability allows local authenticated users on Brocade Fabric OS systems to escalate their privileges to root level using specific commands. It affects Brocade SAN switch administrators and op...
This vulnerability in Brocade Fabric OS allows authenticated local attackers with Bash shell access to read insecurely stored file contents, including command history. This affects Brocade SAN switch ...
This vulnerability in Brocade Fabric OS allows authenticated remote attackers with administrative credentials to execute arbitrary commands as root using specific commands. It affects Brocade SAN swit...
This vulnerability allows administrator-level users on Brocade Fabric OS to execute the bind command, enabling privilege escalation and bypassing security controls to run arbitrary commands. It affect...
A command injection vulnerability in Brocade Fabric OS allows local authenticated attackers to escalate privileges via crafted portcfg commands. This affects IP extension platforms including Brocade 7...
This vulnerability allows man-in-the-middle attackers to forge SSH keys during remote operations, enabling them to hijack service sessions on Brocade Fabric OS switches. Attackers could potentially ga...
A vulnerability in Brocade Fabric OS allows authenticated remote attackers to read device data via SNMP using hard-coded default community strings. This affects Brocade Fabric OS versions before v9.0....
CVE-2023-38709 is an input validation vulnerability in Apache HTTP Server that allows malicious backend applications or content generators to split HTTP responses, potentially enabling response smuggl...
This CVE describes a remote code execution vulnerability in Brocade Fabric OS that allows attackers to execute arbitrary code and gain root access to Brocade switches. It affects Brocade Fabric OS ver...
This vulnerability exposes FTP/SFTP/SCP server passwords in clear text within SupportSave files when downgrading from Brocade Fabric OS v9.2.0 to earlier versions. Anyone performing such downgrades on...
This vulnerability allows authenticated local users on Brocade Fabric OS to execute arbitrary commands regardless of their assigned privileges by exploiting improper path validation. Affected systems ...
This vulnerability in Brocade Fabric OS web management interface allows authenticated attackers to crash the HTTP application handler by sending malformed input, requiring a system reboot to restore s...
This authentication bypass vulnerability in Brocade Fabric OS allows attackers to log in with empty or invalid passwords via telnet, SSH, and REST interfaces. It affects Brocade SAN switches running v...
This vulnerability affects Brocade Fabric OS and SANnav systems using SSH host keys shorter than 2048 bits, making SSH communications vulnerable to man-in-the-middle attacks. Attackers could intercept...
This vulnerability in Brocade Fabric OS allows local authenticated users with lower privileges to view command line passwords and access sensitive information that should be restricted to higher-privi...
This vulnerability allows local admin users on Brocade Fabric OS to escalate privileges to root level, enabling arbitrary code execution. It affects Fabric OS versions 9.1.0 through 9.1.1d6 where root...
This vulnerability in Brocade Fabric OS web interface exposes encoded session passwords in session storage on Virtual Fabric platforms. It allows authenticated users to view other users' session passw...
This vulnerability allows authenticated privileged users on Brocade Fabric OS switches to cause a segmentation fault (crash) by executing a specific CLI command. It affects Brocade Fabric OS versions ...
This vulnerability in Brocade Fabric OS allows authenticated administrators to abuse shell commands (source, ping6, sleep, disown, wait) to manipulate path variables and perform directory traversal at...
This vulnerability allows authenticated administrators on Brocade Fabric OS to use the 'grep' shell command for directory traversal, potentially accessing or modifying files outside intended directori...
A path traversal vulnerability in Brocade Fabric OS allows local admin users to access files outside intended directories, potentially exposing sensitive information. This affects organizations using ...