exploitDog

CVE-2023-31430

Опубликовано: 02 авг. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to a denial of service.

Ссылки

https://security.netapp.com/advisory/ntap-20230908-0007/
Third Party Advisory
https://support.broadcom.com/external/content/SecurityAdvisories/0/22381
Vendor Advisory
https://security.netapp.com/advisory/ntap-20230908-0007/
Third Party Advisory
https://support.broadcom.com/external/content/SecurityAdvisories/0/22381
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:broadcom:brocade_fabric_operating_system:*:*:*:*:*:*:*:*

Версия до 9.1.1c (исключая)

cpe:2.3:o:broadcom:brocade_fabric_operating_system:9.2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00044

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-120

CWE-120

Связанные уязвимости

GHSA-5m2p-p2cf-cgcg

CVSS3: 5.5

github

больше 2 лет назад

A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to a denial of service.

EPSS

Процентиль: 13%

0.00044

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-120

CWE-120