CVE-2025-4661

LOW

2.3

Description

A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local admin user to gain access to files outside the intended directory potentially leading to the disclosure of sensitive information. Note: Admin level privilege is required on the switch in order to exploit

CVE Details

CVSS v3.1 Score2.3

SeverityLOW

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Attack VectorLOCAL

ComplexityLOW

Privileges RequiredHIGH

User InteractionNONE

Published6/19/2025

Last Modified2/6/2026

Sourcenvd

Honeypot Sightings0

Affected Products

broadcom:fabric_operating_system

Weaknesses (CWE)

CWE-22

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35814(sirt@brocade.com)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.