← Volver a CVEs
CVE-2023-5973
MEDIUM4.3
Descripcion
Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent the portName to the user if the portName contains reserved characters. This could allow an authenticated user to alter the UI of the Brocade Switch and change ports display.
Detalles CVE
Puntuacion CVSS v3.14.3
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado4/5/2024
Ultima modificacion2/13/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
broadcom:fabric_operating_system
Debilidades (CWE)
CWE-346CWE-346
Referencias
https://security.netapp.com/advisory/ntap-20240628-0005/(sirt@brocade.com)
https://support.broadcom.com/external/content/SecurityAdvisories/0/23214(sirt@brocade.com)
https://security.netapp.com/advisory/ntap-20240628-0005/(af854a3a-2127-422b-91ae-364da2661108)
https://support.broadcom.com/external/content/SecurityAdvisories/0/23214(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.