CVE-2023-4162
4.4
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Summary
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg –set -expire -minDiff“.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Brocade | Fabric OS | Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a | affected |
Weaknesses
- CWE-252: CWE-252 Unchecked Return Value
ADP Enrichment
CVE Program Container
Additional References
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22513
- https://security.netapp.com/advisory/ntap-20231124-0010/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22513
- https://security.netapp.com/advisory/ntap-20231124-0010/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.