CISA Adds Actively Exploited Broadcom and Commvault Flaws to KEV Database

2025-04-29 04:21

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two high-severity security flaws impacting Broadcom Brocade Fabric OS and Commvault Web Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerabilities in question are listed below - CVE-2025-1976 (CVSS score: 8.6) - A code injection flaw

News URL

https://thehackernews.com/2025/04/cisa-adds-actively-exploited-broadcom.html

#broadcom #cisa #database #KEV #CVE-2025-1976

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-24	CVE-2025-1976	Brocade Fabric OS versions starting with 9.1.0 have root access removed, however, a local user with admin privilege can potentially execute arbitrary code with full root privileges on Fabric OS versions 9.1.0 through 9.1.1d6. local low complexity CWE-78	6.7

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Broadcom		91	5	136	170	71	382
Commvault		3	0	0	5	3	8

News URL

Related news

Related Vulnerability

Related vendor