CVE-2023-3454
8.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Summary
Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Brocade | Fabric OS | after v9.0 and before v9.2.0 | affected |
Weaknesses
- CWE-78: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://support.broadcom.com/external/content/SecurityAdvisories/0/23215
- https://security.netapp.com/advisory/ntap-20240628-0004/
References
- https://support.broadcom.com/external/content/SecurityAdvisories/0/23215
- https://security.netapp.com/advisory/ntap-20240628-0004/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.