PT-2020-14400 · Brocade · Brocade Fabric Os

Published

2020-09-25

Updated

2021-08-23

CVE-2020-15373

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Brocade Fabric OS versions 8.2.1 through 8.2.1d Brocade Fabric OS versions 8.2.2 before 8.2.2c

Description The issue concerns multiple buffer overflow vulnerabilities in the REST API of Brocade Fabric OS. These vulnerabilities could allow remote unauthenticated attackers to perform various attacks.

Recommendations For Brocade Fabric OS versions 8.2.1 through 8.2.1d, update to a version outside of this range to mitigate the risk. For Brocade Fabric OS versions 8.2.2 before 8.2.2c, update to version 8.2.2c or later to resolve the issue. As a temporary workaround, consider restricting access to the REST API until a patch is available.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2020-15373

Affected Products

Brocade Fabric Os

PT-2020-14400 · Brocade · Brocade Fabric Os

CVE-2020-15373

Weakness Enumeration

Related Identifiers

Affected Products

References · 4