CVE-2020-15374

EUVD-2020-7369
Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
Affected Products (NVD)
VendorProductVersion
broadcomfabric_operating_system
8.2.1
broadcomfabric_operating_system
8.2.1a:a
broadcomfabric_operating_system
8.2.1b:b
broadcomfabric_operating_system
8.2.1c:c
broadcomfabric_operating_system
8.2.1d:d
broadcomfabric_operating_system
8.2.2
broadcomfabric_operating_system
8.2.2a:a
broadcomfabric_operating_system
8.2.2a1:a1
broadcomfabric_operating_system
8.2.2b:b
broadcomfabric_operating_system
8.2.2c:c
𝑥
= Vulnerable software versions
References
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2020-1084
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2020-1084