CVE-2021-27791
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-27791
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The function that is used to parse the Authentication header in Brocade Fabric OS Web application service before Brocade Fabric OS v9.0.1a and v8.2.3a fails to properly process a malformed authentication header from the client, resulting in reading memory addresses outside the intended range. An unauthenticated attacker could discover a request, which could bypass the authentication process.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Brocade Fabric OS 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Brocade Fabric OS(FOS)是美国博科(Brocade)公司的一套使用在交换机和路由器等设备中的嵌入式操作系统。 Brocade Fabric OS 存在缓冲区错误漏洞,攻击者可利用该漏洞可以通过Brocade Fabric OS的Authentication Header强制读取无效地址,以触发拒绝服务,或获取敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Brocade Fabric OS | Brocade Fabric OS before Brocade Fabric OS v9.0.1a and v8.2.3a | - |
II. Public POCs for CVE-2021-27791
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-27791
请登录查看更多情报信息。
- https://security.netapp.com/advisory/ntap-20210819-0002/x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2021-27791
Same Patch Batch · n/a · 2021-08-12 · 58 CVEs total
| CVE-2020-20975 | Gxlcms SQL注入漏洞 | |
| CVE-2020-28165 | Nature Easy Soft Network Technology ZenTao 代码问题漏洞 | |
| CVE-2021-38592 | Wasm3 缓冲区错误漏洞 | |
| CVE-2021-37222 | RCDCAP 安全漏洞 | |
| CVE-2020-24576 | Netskope Client 安全漏洞 | |
| CVE-2020-22403 | express-cart 跨站请求伪造漏洞 | |
| CVE-2021-38597 | wolfSSL 数据伪造问题漏洞 | |
| CVE-2021-27790 | Brocade Fabric OS 缓冲区错误漏洞 | |
| CVE-2021-35955 | Contao 跨站脚本漏洞 | |
| CVE-2021-20314 | libspf2 缓冲区错误漏洞 | |
| CVE-2021-27794 | Brocade Fabric OS 授权问题漏洞 | |
| CVE-2020-20977 | UK CMS 跨站脚本漏洞 | |
| CVE-2020-20979 | LJCMS 代码问题漏洞 | |
| CVE-2020-20981 | Metinfo MetInfo SQL注入漏洞 | |
| CVE-2021-38599 | WAL-G 代码问题漏洞 | |
| CVE-2021-38604 | GNU C Library 代码问题漏洞 | |
| CVE-2021-38606 | reNgine 安全特征问题漏洞 | |
| CVE-2020-18445 | YUNUCMS 跨站脚本漏洞 | |
| CVE-2020-18446 | YUNUCMS 跨站脚本漏洞 | |
| CVE-2020-18449 | UKCMS 跨站脚本漏洞 |
Showing top 20 of 58 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Brocade Fabric OS
- CVE-2025-4663
Denial-of-Service (DoS) after Unusual or Exceptional Conditi - CVE-2024-5461
Command or parameter injection via unique embedded switch SN - CVE-2024-5462
Brocade Fabric OS may capture SNMP Passwords in clear text - CVE-2023-4163
Possible buffer overflow in portcfgfportbuffers in Brocade F - CVE-2023-31430
buffer overflow vulnerability in “secpolicydelete” command
V. Comments for CVE-2021-27791
No comments yet