CVE-2025-4661

LOW

2.3

Descricao

A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local admin user to gain access to files outside the intended directory potentially leading to the disclosure of sensitive information. Note: Admin level privilege is required on the switch in order to exploit

Detalhes CVE

Pontuacao CVSS v3.12.3

SeveridadeLOW

Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Vetor de ataqueLOCAL

ComplexidadeLOW

Privilegios necessariosHIGH

Interacao do usuarioNONE

Publicado6/19/2025

Ultima modificacao2/6/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

broadcom:fabric_operating_system

Fraquezas (CWE)

CWE-22

Referencias

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35814(sirt@brocade.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.