Possible buffer overflow in portcfgfportbuffers in Brocade Fabric OS
CVE-2023-4163

4.4MEDIUM

Key Information:

Vendor: Brocade
Status: Brocade Fabric Os
Vendor: CVE Published:; 31 August 2023

What is CVE-2023-4163?

In Brocade Fabric OS before v9.2.0a, a local authenticated privileged user can trigger a buffer overflow condition, leading to a kernel panic with large input to buffers in the portcfgfportbuffers command.

Affected Version(s)

Brocade Fabric OS Directors Fabric OS before v9.2.0a

References

https://support.broadcom.com/web/ecx/support-content-noti...

https://security.netapp.com/advisory/ntap-20231130-0001/

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 31, 2023
Vulnerability Reserved
Aug 4, 2023