PT-2022-5067 · Brocade · Brocade Fabric Os
Published
2022-09-13
·
Updated
2025-05-07
·
CVE-2022-33184
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Brocade Fabric OS versions prior to 7.4.2j
Brocade Fabric OS versions prior to 8.2.0 cbn5
Brocade Fabric OS versions prior to 8.2.3c
Brocade Fabric OS versions prior to 9.0.1e
Brocade Fabric OS versions prior to 9.1.1
Description
The issue is related to a stack-based buffer overflow in the fab seg.c.h libraries of Brocade Fabric OS, which could allow local authenticated attackers to execute arbitrary code as the root user account. This is due to a buffer overflow vulnerability that enables attackers to read data beyond the buffer boundaries in memory.
Recommendations
For Brocade Fabric OS versions prior to 7.4.2j, update to version 7.4.2j or later.
For Brocade Fabric OS versions prior to 8.2.0 cbn5, update to version 8.2.0 cbn5 or later.
For Brocade Fabric OS versions prior to 8.2.3c, update to version 8.2.3c or later.
For Brocade Fabric OS versions prior to 9.0.1e, update to version 9.0.1e or later.
For Brocade Fabric OS versions prior to 9.1.1, update to version 9.1.1 or later.
Fix
Memory Corruption
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Brocade Fabric Os