Vulnerabilities > Broadcom
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-05 | CVE-2019-15126 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products An issue was discovered on Broadcom Wi-Fi client devices. | 3.1 |
| 2020-02-05 | CVE-2019-16204 | Information Exposure Through Log Files vulnerability in Broadcom Fabric Operating System Brocade Fabric OS Versions before v7.4.2f, v8.2.2a, v8.1.2j and v8.2.1d could expose external passwords, common secrets or authentication keys used between the switch and an external server. | 7.5 |
| 2020-02-05 | CVE-2019-16203 | Information Exposure Through Log Files vulnerability in Broadcom Fabric Operating System Brocade Fabric OS Versions before v8.2.2a and v8.2.1d could expose the credentials of the remote ESRS server when these credentials are given as a command line option when configuring the ESRS client. | 7.5 |
| 2020-02-03 | CVE-2019-9502 | Out-of-bounds Write vulnerability in multiple products The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. | 8.8 |
| 2020-02-03 | CVE-2019-9501 | Out-of-bounds Write vulnerability in multiple products The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. | 8.8 |
| 2020-01-16 | CVE-2019-9503 | Improper Input Validation vulnerability in multiple products The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. | 8.3 |
| 2020-01-16 | CVE-2019-9500 | Out-of-bounds Write vulnerability in multiple products The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. | 8.3 |
| 2020-01-08 | CVE-2019-19544 | Improper Privilege Management vulnerability in Broadcom CA Automic Dollar Universe 5.3.3 CA Automic Dollar Universe 5.3.3 contains a vulnerability, related to the uxdqmsrv binary being setuid root, that allows local attackers to elevate privileges. | 7.8 |
| 2020-01-08 | CVE-2019-19518 | Improper Authentication vulnerability in Broadcom CA Automic Sysload 5.6.0/6.1.2 CA Automic Sysload 5.6.0 through 6.1.2 contains a vulnerability, related to a lack of authentication on the File Server port, that potentially allows remote attackers to execute arbitrary commands. | 9.8 |
| 2019-12-20 | CVE-2019-19231 | Unspecified vulnerability in Broadcom CA Client Automation An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges. | 7.8 |