CVE-2021-27790

Summary

The command ipfilter in Brocade Fabric OS before Brocade Fabric OS v.9.0.1a, v8.2.3, and v8.2.0_CBN4, and v7.4.2h uses unsafe string function to process user input. Authenticated attackers can abuse this vulnerability to exploit stack-based buffer overflows, allowing execution of arbitrary code as the root user account.

Affected Software

VendorProductVersion RangeStatus
n/aBrocade Fabric OSBrocade Fabric OS before Brocade Fabric OS v.9.0.1a, v8.2.3, and v8.2.0_CBN4, and v7.4.2haffected

Weaknesses

  • execution of arbitrary code

ADP Enrichment

CVE Program Container

Additional References

References