CVE-2020-15374

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
broadcomfabric_operating_system
8.2.1
broadcomfabric_operating_system
8.2.1a:a
broadcomfabric_operating_system
8.2.1b:b
broadcomfabric_operating_system
8.2.1c:c
broadcomfabric_operating_system
8.2.1d:d
broadcomfabric_operating_system
8.2.2
broadcomfabric_operating_system
8.2.2a:a
broadcomfabric_operating_system
8.2.2a1:a1
broadcomfabric_operating_system
8.2.2b:b
broadcomfabric_operating_system
8.2.2c:c
𝑥
= Vulnerable software versions
References
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2020-1084
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2020-1084