Vulnerabilities > CVE-2021-27793 - Incorrect Authorization vulnerability in Broadcom Fabric Operating System

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

broadcom

CWE-863

NVD

Published: 2021-08-12

Updated: 2021-08-23

Summary

ntermittent authorization failure in aaa tacacs+ with Brocade Fabric OS versions before Brocade Fabric OS v9.0.1b and after 9.0.0, also in Brocade Fabric OS before Brocade Fabric OS v8.2.3a and after v8.2.0 could cause a user with a valid account to be unable to log into the switch.

Vulnerable Configurations

Part	Description	Count
OS	Broadcom Broadcom Fabric Operating System 9.0.0 Broadcom Fabric Operating System 9.0.0A Broadcom Fabric Operating System 9.0.0B Broadcom Fabric Operating System 8.2.0 Broadcom Fabric Operating System 8.2.0A Broadcom Fabric Operating System 8.2.1 Broadcom Fabric Operating System 8.2.1A Broadcom Fabric Operating System 8.2.1B Broadcom Fabric Operating System 8.2.1C Broadcom Fabric Operating System 8.2.1D Broadcom Fabric Operating System 8.2.1E Broadcom Fabric Operating System 8.2.2 Broadcom Fabric Operating System 8.2.2A Broadcom Fabric Operating System 8.2.2A1 Broadcom Fabric Operating System 8.2.2B Broadcom Fabric Operating System 8.2.2C Broadcom Fabric Operating System 9.0.1 Broadcom Fabric Operating System 8.2.3 Broadcom Fabric Operating System 9.0.1A	36

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References