Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Brocade — Vulnerabilities & Security Advisories 81

Browse all 81 CVE security advisories affecting Brocade. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Brocade operates primarily in the enterprise networking sector, specializing in high-performance Fibre Channel and Ethernet switches for data center infrastructure. Historically, its network operating systems have been susceptible to a range of critical flaws, most notably remote code execution (RCE) and buffer overflow vulnerabilities that allow attackers to gain unauthorized administrative access. Privilege escalation and cross-site scripting (XSS) issues have also appeared frequently in its management interfaces, exposing sensitive configuration data. A significant security incident occurred in 2017 when researchers disclosed multiple vulnerabilities in the Fabric OS, highlighting weaknesses in default credential handling and input validation. With 81 recorded CVEs, the vendor’s legacy products often lack modern security controls, requiring rigorous patch management to mitigate risks associated with unpatched firmware versions and exposed management ports.

Top products by Brocade: Brocade SANnav Fabric OS SANnav Brocade Fabric OS ASCG Brocade Fabric OS Brocade Switches Brocade SANnav
CVE IDTitleCVSSSeverityPublished
CVE-2023-31424 Web authentication and authorization bypass — SANnavCWE-290 8.1 High2023-08-31
CVE-2023-31423 Possible information exposure through log file vulnerability — SANnavCWE-312 5.7 Medium2023-08-31
CVE-2023-31925 Storage of clear text password in Brocade SANnav — Brocade SANnavCWE-312 5.4 Medium2023-08-31
CVE-2023-4162 Segmentation fault in Brocade Fabric OS after Brocade Fabric OS v9.0 — Fabric OSCWE-252 4.4 Medium2023-08-31
CVE-2023-4163 Possible buffer overflow in portcfgfportbuffers in Brocade Fabric OS — Brocade Fabric OSCWE-120 4.4 Medium2023-08-31
CVE-2023-3489 firmwaredownload command could log servers passwords in clear text — Fabric OSCWE-312 8.6 High2023-08-30
CVE-2023-31926 Arbitrary File Overwrite using less command — Fabric OSCWE-281 7.1 High2023-08-02
CVE-2023-31927 An information disclosure in the web interface of Brocade Fabric OS — Fabric OSCWE-200 5.3 Medium2023-08-02
CVE-2023-31432 Privilege issues in multiple commands — Fabric OSCWE-269 7.8 High2023-08-01
CVE-2023-31928 XSS vulnerability in Brocade Webtools — Fabric OSCWE-79 6.3 Medium2023-08-01
CVE-2023-31428 CLI allows upload or transfer files of dangerous types — Fabric OSCWE-434 5.5 Medium2023-08-01
CVE-2023-31430 buffer overflow vulnerability in “secpolicydelete” command — Brocade Fabric OSCWE-120 5.5 Medium2023-08-01
CVE-2023-31431 A buffer overflow vulnerability in “diagstatus” command — Fabric OSCWE-120 5.5 Medium2023-08-01
CVE-2023-31427 Knowledge of full path name — Fabric OSCWE-22 7.8 High2023-08-01
CVE-2023-31426 scp, sftp, ftp servers passwords in supportsave — Brocade Fabric OS CWE-532 6.8 Medium2023-08-01
CVE-2023-31425 Privilege escalation via the fosexec command — Fabric OS 7.8 High2023-08-01
CVE-2023-31429 Multiple commands print sensitive information in the terminal — Fabric OSCWE-209 5.5 Medium2023-08-01
CVE-2022-33187 Brocade SANnav before v2.2.1 logs usernames and encoded passwords in debug-enabled logs — Brocade SANnavCWE-532 5.5 Medium2022-12-09
CVE-2021-27798 privileged directory transversal.in Brocade Fabric OS versions 7.4.1.x and 7.3.x — Brocade Fabric OSCWE-22 5.5 -2022-08-05
CVE-2019-16204 Brocade Fabric OS 日志信息泄露漏洞 — Brocade Fabric OS 7.5 -2020-02-05
CVE-2019-16203 Brocade Fabric OS 日志信息泄露漏洞 — Brocade Fabric OS 4.6 -2020-02-05

This page lists every published CVE security advisory associated with Brocade. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.