Описание
Supportlink CLI in Brocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c does not obfuscate the password field, which could expose users’ credentials of the remote server. An authenticated user could obtain the exposed password credentials to gain access to the remote host.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1a:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1b:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1c:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.1d:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2a:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2a1:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:8.2.2b:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.0022
Низкий
8.8 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-521
Связанные уязвимости
github
больше 3 лет назад
Supportlink CLI in Brocade Fabric OS Versions v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c does not obfuscate the password field, which could expose users’ credentials of the remote server. An authenticated user could obtain the exposed password credentials to gain access to the remote host.
EPSS
Процентиль: 44%
0.0022
Низкий
8.8 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-521