CVE-2025-58382

EUVD-2025-206762
A vulnerability in the secure configuration of authentication and 
management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could 
allow an authenticated, remote attacker with administrative credentials 
to execute arbitrary commands as root using “supportsave”, 
“seccertmgmt”, “configupload” command.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
broadcomfabric_operating_system
𝑥
< 9.2.1c2
broadcomfabric_operating_system
9.2.2 ≤
𝑥
< 9.2.2b
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36849