CVE-2025-58382

Summary

A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

Affected Software

VendorProductVersion RangeStatus
BrocadeFabric OSbefore 9.2.1c2 and 9.2.2 through 9.2.2aaffected

Weaknesses

  • CWE-305: CWE-305: Authentication Bypass by Primary Weakness

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References