Denial of Service Vulnerability in Brocade Fibre Channel SAN Products
CVE-2017-6227

6.5MEDIUM

Key Information:

Vendor: Brocade Communications Systems, Inc.
Status: Brocade Fabric Os
Vendor: CVE Published:; 8 February 2018

What is CVE-2017-6227?

This vulnerability resides in the IPv6 stack of Brocade Fibre Channel SAN products, which allows an attacker to send specially crafted Router Advertisement (RA) messages. When the targeted system receives these messages, it may lead to denial of service conditions, including significant CPU consumption and potential device hang. As a result, the affected Brocade devices could become unresponsive, disrupting normal operations and access to network resources.

Affected Version(s)

Brocade FABRIC OS all versions before 7.4.2b, 8.1.2 and 8.2.0

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 8, 2018
Vulnerability Reserved
Feb 23, 2017

Brocade Communications Systems, Inc.

What is CVE-2017-6227?

Affected Version(s)

References

CVSS V3.1

Timeline