CVE-2023-4162

Summary

A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg –set -expire -minDiff“.

Affected Software

VendorProductVersion RangeStatus
BrocadeFabric OSBrocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0aaffected

Weaknesses

  • CWE-252: CWE-252 Unchecked Return Value

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References