CVE-2025-4661

EUVD-2025-28065
A path transversal vulnerability in 
Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local admin user to 
gain access to files outside the intended directory potentially leading 
to the disclosure of sensitive information.


Note: Admin level privilege is required on the switch in order to exploit
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.3 LOW
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
broadcomfabric_operating_system
9.1.0 ≤
𝑥
≤ 9.2.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35814