PT-2022-21728 · Brocade · Brocade Fabric Os
Pierre Barre
·
Published
2022-12-08
·
Updated
2026-02-05
·
CVE-2022-33186
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Brocade Fabric OS software versions prior to v9.1.1
Description
A vulnerability in Brocade Fabric OS software could allow a remote unauthenticated attacker to execute commands on a Brocade Fabric OS switch, capable of modifying zoning, disabling the switch, disabling ports, and modifying the switch IP address.
Recommendations
For Brocade Fabric OS software versions prior to v9.1.1, update to a version later than v9.1.1 to resolve the issue.
As a temporary workaround, consider restricting access to the switch to minimize the risk of exploitation.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Brocade Fabric Os