Remote Command Execution in Brocade Fabric OS by Brocade
CVE-2018-6442

8.8HIGH

Key Information:

Vendor: Brocade Communications Systems, Inc.
Status: Brocade Fabric Os
Vendor: CVE Published:; 8 November 2018

What is CVE-2018-6442?

A security flaw in the firmware update section of Brocade Fabric OS allows remote authenticated attackers to execute arbitrary commands. This vulnerability affects various versions of the software, creating significant risks for users' systems and data integrity. Keeping the system updated is crucial to mitigate the potential impacts of this vulnerability.

Affected Version(s)

Brocade Fabric OS All versions prior to version 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 8, 2018
Vulnerability Reserved
Jan 31, 2018

Brocade Communications Systems, Inc.

What is CVE-2018-6442?

Affected Version(s)

References

CVSS V3.1

Timeline