CVE-2022-33185

Summary

Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe string functions to process user input. Authenticated local attackers could abuse these vulnerabilities to exploit stack-based buffer overflows, allowing arbitrary code execution as the root user account.

Affected Software

VendorProductVersion RangeStatus
n/aBrocade Fabric OSBrocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0affected

Weaknesses

  • Stack Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References