CVE-2020-15369

Summary

Supportlink CLI in Brocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c does not obfuscate the password field, which could expose users’ credentials of the remote server. An authenticated user could obtain the exposed password credentials to gain access to the remote host.

Affected Software

VendorProductVersion RangeStatus
n/aBrocade Fabric OSBrocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2caffected

Weaknesses

  • Unprotected Storage of Credentials

ADP Enrichment

CVE Program Container

Additional References

References