CVE-2021-27793

Опубликовано: 12 авг. 2021

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

ntermittent authorization failure in aaa tacacs+ with Brocade Fabric OS versions before Brocade Fabric OS v9.0.1b and after 9.0.0, also in Brocade Fabric OS before Brocade Fabric OS v8.2.3a and after v8.2.0 could cause a user with a valid account to be unable to log into the switch.

Ссылки

https://security.netapp.com/advisory/ntap-20210819-0001/
Third Party Advisory
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1553
Vendor Advisory
https://security.netapp.com/advisory/ntap-20210819-0001/
Third Party Advisory
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1553
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*

Версия от 8.2.0 (включая) до 8.2.3 (исключая)

cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*

Версия от 9.0.0 (включая) до 9.0.1 (исключая)

cpe:2.3:o:broadcom:fabric_operating_system:8.2.3:*:*:*:*:*:*:*

cpe:2.3:o:broadcom:fabric_operating_system:9.0.1:*:*:*:*:*:*:*

cpe:2.3:o:broadcom:fabric_operating_system:9.0.1a:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.00323

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-863

Связанные уязвимости

GHSA-j9pj-ff73-q8xm

github

больше 3 лет назад

BDU:2022-07246