Directory Traversal Vulnerability in Brocade Fabric OS by Broadcom
CVE-2021-27798

5.5MEDIUM

Key Information:

Vendor: Brocade
Status: Brocade Fabric Os
Vendor: CVE Published:; 5 August 2022

What is CVE-2021-27798?

A directory traversal vulnerability exists in Brocade Fabric OS versions v7.4.1b and v7.3.1d, enabling local users to gain unauthorized access to sensitive directories. This flaw emphasizes the need for users to upgrade to supported versions, as v7.4.1.x and v7.3.x have reached the end of life. Upgrading is crucial to maintain system integrity and security.

Affected Version(s)

Brocade Fabric OS Brocade Fabric OS 7.4.1b, and 7.3.1d.

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 5, 2022
Vulnerability Reserved
Feb 26, 2021