CVE-2021-27789

Опубликовано: 18 мар. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. An attacker who has compromised the FOS system may utilize this weakness to capture sensitive information, such as user credentials.

Ссылки

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1494
Not Applicable
Vendor Advisory
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1494
Not Applicable
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*

Версия до 8.2.3a (исключая)

cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*

Версия от 9.0.0 (включая) до 9.0.1a (исключая)

EPSS

Процентиль: 55%

0.00327

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-c85g-628v-q46j