← Retour aux CVEs
CVE-2023-5973
MEDIUM4.3
Description
Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent the portName to the user if the portName contains reserved characters. This could allow an authenticated user to alter the UI of the Brocade Switch and change ports display.
Details CVE
Score CVSS v3.14.3
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie4/5/2024
Derniere modification2/13/2025
Sourcenvd
Observations honeypot0
Produits affectes
broadcom:fabric_operating_system
Faiblesses (CWE)
CWE-346CWE-346
References
https://security.netapp.com/advisory/ntap-20240628-0005/(sirt@brocade.com)
https://support.broadcom.com/external/content/SecurityAdvisories/0/23214(sirt@brocade.com)
https://security.netapp.com/advisory/ntap-20240628-0005/(af854a3a-2127-422b-91ae-364da2661108)
https://support.broadcom.com/external/content/SecurityAdvisories/0/23214(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.