CVE-2023-31427

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 1, 2023

Updated: Feb 16, 2024

CWE ID 22

Summary

CVE-2023-31427 is a vulnerability affecting Brocade Fabric OS versions prior to v9.1.1c and v9.2.0. This issue allows authenticated, local users with knowledge of full path names inside the OS to execute any command, bypassing assigned privileges. This vulnerability is significant as it could potentially grant unauthorized access and control to an attacker. Starting from Fabric OS v9.1.0, the "root" account access has been disabled as a mitigation measure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Broadcom Fabric Operating System

Affected Vendors

Broadcom

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sMR8j1
https://www.cve.org/CVERecord?id=CVE-2023-31427
https://nvd.nist.gov/vuln/detail/CVE-2023-31427

Back to Vulnerability Database