Arbitrary File Write Vulnerability in Brocade Fabric OS
CVE-2020-15388

6.5MEDIUM

Key Information:

Vendor: Broadcom
Status: Brocade Fabric Os
Vendor: CVE Published:; 18 March 2022

Summary

An issue exists in Brocade Fabric OS versions prior to v9.0.1a, where an authenticated command-line interface (CLI) user can exploit the history command to manipulate files on the system. This vulnerability allows for the unauthorized writing of arbitrary content to sensitive files, potentially jeopardizing system integrity and security. It is crucial for users to update to the latest version to protect against this exploitation.

Affected Version(s)

Brocade Fabric OS Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 18, 2022
Vulnerability Reserved
Jun 29, 2020