Vulnerabilities > Broadcom > Brocade Fabric Operating System > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-02 CVE-2023-31926 Improper Preservation of Permissions vulnerability in Broadcom Brocade Fabric Operating System
System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0.
local
low complexity
broadcom CWE-281
7.1
2023-08-02 CVE-2023-31432 Improper Privilege Management vulnerability in Broadcom Brocade Fabric Operating System
Through manipulation of passwords or other variables, using commands such as portcfgupload, configupload, license, myid, a non-privileged user could obtain root privileges in Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c and v9.2.0.
local
low complexity
broadcom CWE-269
7.8
2021-04-22 CVE-2021-23133 Race Condition vulnerability in multiple products
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process.
7.0
2020-04-28 CVE-2020-12243 Uncontrolled Recursion vulnerability in multiple products
In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).
7.5