PT-2025-26201 · Brocade · Brocade Fabric Os
Published
2025-06-10
·
Updated
2026-02-06
·
CVE-2025-4661
CVSS v4.0
4.8
Medium
| Vector | AV:A/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Brocade Fabric OS versions 9.1.0 through 9.2.2
Description
A path traversal issue could allow a local admin user to gain access to files outside the intended directory, potentially leading to the disclosure of sensitive information. Admin level privilege is required on the switch in order to exploit this issue.
Recommendations
For Brocade Fabric OS versions 9.1.0 through 9.2.2, consider restricting access to sensitive files and directories until a patch is available.
As a temporary workaround, limit the privileges of local admin users to minimize the risk of exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Brocade Fabric Os