8.2.0a

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-09	CVE-2020-15383	Unspecified vulnerability in Broadcom Fabric Operating System Running security scans against the SAN switch can cause config and secnotify processes within the firmware before Brocade Fabric OS v9.0.0, v8.2.2d and v8.2.1e to consume all memory leading to denial of service impacts possibly including a switch panic. network low complexity broadcom	5.0
2020-12-11	CVE-2020-15376	Unspecified vulnerability in Broadcom Fabric Operating System Brocade Fabric OS versions before v9.0.0 and after version v8.1.0, configured in Virtual Fabric mode contain a weakness in the ldap implementation that could allow a remote ldap user to login in the Brocade Fibre Channel SAN switch with "user" privileges if it is not associated with any groups. network low complexity broadcom	4.0
2020-09-25	CVE-2018-6449	Cross-site Scripting vulnerability in Broadcom Fabric Operating System Host Header Injection vulnerability in the http management interface in Brocade Fabric OS versions before v9.0.0 could allow a remote attacker to exploit this vulnerability by injecting arbitrary HTTP headers network broadcom CWE-79	4.3
2020-09-25	CVE-2018-6447	Cross-site Scripting vulnerability in Broadcom Fabric Operating System A Reflective XSS Vulnerability in HTTP Management Interface in Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g could allow authenticated attackers with access to the web interface to hijack a user’s session and take over the account. network broadcom CWE-79	3.5
2020-09-25	CVE-2020-15371	Unspecified vulnerability in Broadcom Fabric Operating System Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, contains code injection and privilege escalation vulnerability. network low complexity broadcom	7.5