Vulnerabilities > Broadcom
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-08 | CVE-2018-6442 | Unspecified vulnerability in Broadcom Fabric Operating System A vulnerability in the Brocade Webtools firmware update section of Brocade Fabric OS before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow remote authenticated attackers to execute arbitrary commands. | 8.8 |
| 2018-11-08 | CVE-2018-6441 | Unspecified vulnerability in Broadcom Fabric Operating System A vulnerability in Secure Shell implementation of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to provide arbitrary environment variables, and bypass the restricted configuration shell. | 7.8 |
| 2018-11-08 | CVE-2018-6435 | Unspecified vulnerability in Broadcom Fabric Operating System A Vulnerability in the secryptocfg command of Brocade Fabric OS command line interface (CLI) versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to escape the restricted shell and, and gain root access. | 7.8 |
| 2018-11-08 | CVE-2018-6434 | Session Fixation vulnerability in Broadcom Fabric Operating System A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow attackers to intercept or manipulate a user's session ID. | 7.5 |
| 2018-11-08 | CVE-2018-6433 | Improper Input Validation vulnerability in Broadcom Fabric Operating System A vulnerability in the secryptocfg export command of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to bypass the export file access restrictions and initiate a file copy from the source to a remote system. | 5.5 |
| 2018-10-17 | CVE-2018-14597 | Information Exposure vulnerability in Broadcom products CA Technologies Identity Governance 12.6, 14.0, 14.1, and 14.2 and CA Identity Suite Virtual Appliance 14.0, 14.1, and 14.2 provide telling error messages that may allow remote attackers to enumerate account names. | 5.3 |
| 2018-10-17 | CVE-2018-18408 | Use After Free vulnerability in multiple products A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. | 9.8 |
| 2018-10-17 | CVE-2018-18407 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0 beta1, during the incremental checksum operation. | 5.5 |
| 2018-10-03 | CVE-2018-17974 | Out-of-bounds Read vulnerability in Broadcom Tcpreplay 4.3.0 An issue was discovered in Tcpreplay 4.3.0 beta1. | 5.5 |
| 2018-09-28 | CVE-2018-17582 | Out-of-bounds Read vulnerability in Broadcom Tcpreplay 4.3.0 Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. | 7.1 |