CVE-2021-27796

A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS v8.0.1b, v7.4.1d could allow an authenticated attacker within the restricted shell environment (rbash) as either the user or factory account, to read the contents of any file on the filesystem utilizing one of a few available binaries.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
brocadeCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
broadcomfabric_operating_system
𝑥
< 7.4.1d
broadcomfabric_operating_system
8.0.0 ≤
𝑥
< 8.0.1b
𝑥
= Vulnerable software versions
References
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1721
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1721