broadcom

663 tracked vulnerabilities.

CVE-2025-24503 CRITICAL
Symantec Privileged Access Management 3.4.6-4.1.7 and 4.2.0 - Session Fixation via Crafted Link
Jan 30, 2025
EPSS 0.00
CVE-2025-24502 MEDIUM
Broadcom Symantec Privileged Access Management - Improper Session Validation
Jan 30, 2025
EPSS 0.00
CVE-2025-24501 MEDIUM
Broadcom Symantec Privileged Access Management 3.4.6-4.1.8 and 4.2.0 - Unauthenticated Log Tampering via HTTP Request
Jan 30, 2025
EPSS 0.00
CVE-2025-24500 HIGH
Broadcom Symantec Privileged Access Management 3.4.6-4.1.7 and 4.2.0 - Unauthenticated Information Disclosure
Jan 30, 2025
EPSS 0.00
CVE-2024-22654 HIGH
tcpreplay 4.4.4 - Infinite Loop in tcprewrite get.c
May 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-1509 CRITICAL
Brocade ASCG <3.2.0 - Info Disclosure
Feb 28, 2025
CVSS 9.1
EPSS 0.00
CVE-2024-5462 HIGH
Brocade Fabric OS <9.2.0 - Info Disclosure
Feb 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-5461 HIGH
Broadcom Fabric Operating System < 8.2.3e1 - Authenticated OS Command Injection via SNMP system.sh Calls
Feb 15, 2025
CVSS 8.0
EPSS 0.00
CVE-2024-4282 CRITICAL
Brocade SANnav <2.3.1b - Info Disclosure
Feb 15, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-10405 MEDIUM
Brocade SANnav < 2.3.1b - Use of Weak TLS Ciphers on Ports 443 and 18082
Feb 15, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-2240 HIGH
Docker daemon <SANnav 2.3.1b - Privilege Escalation
Feb 14, 2025
CVSS 7.2
EPSS 0.01
CVE-2024-10404 MEDIUM
Brocade SANnav < 2.3.1b - Authenticated Cleartext Storage of Sensitive Information in CalInvocationHandler
Feb 14, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-38499 HIGH
CA Client Automation - Info Disclosure
Dec 17, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-7517 HIGH
Brocade Fabric OS < 9.2.0c and 9.2.1-9.2.1a - Authenticated Command Injection via portcfg
Nov 21, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-10403 HIGH
Brocade Fabric OS <8.2.3e2, 9.0.0-9.2.0c, 9.2.1-9.2.1a - Info Discl...
Nov 21, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7516 HIGH
Brocade Fabric OS < 9.2.2 - Unauthenticated Service Session Hijacking via SSH Key Forgery
Nov 12, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-38496 MEDIUM
Broadcom Symantec Privileged Access Management 3.4.6-4.1.7 - Unauthorized Information Disclosure of User Data
Jul 15, 2024
EPSS 0.00
CVE-2024-38495 MEDIUM
Symantec Privileged Access Management 3.4.6-4.1.7 - Unauthenticated User Enumeration
Jul 15, 2024
EPSS 0.00
CVE-2024-38494 HIGH
Broadcom Symantec PAM 3.4.6 and 4.1.0-4.1.7 - Authenticated Remote Command Execution
Jul 15, 2024
EPSS 0.01
CVE-2024-38493 MEDIUM
Symantec Privileged Access Management 4.1.0-4.1.6 - Reflected Cross-Site Scripting in PAM UI Web Interface
Jul 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-38492 CRITICAL
Broadcom Symantec PAM 3.4.6 and 4.1.0-4.1.7 - Upgrade Upload Remote Command Execution
Jul 15, 2024
EPSS 0.02
CVE-2024-38491 HIGH
Unknown Product <Version> - Info Disclosure
Jul 15, 2024
EPSS 0.00
CVE-2024-36458 MEDIUM
Broadcom Symantec Privileged Access Management 3.4.6-4.1.7 - Server-Side Request Forgery
Jul 15, 2024
EPSS 0.00
CVE-2024-36457 MEDIUM
Symantec Privileged Access Management 3.4.6-4.1.7 - Unauthenticated Authentication Bypass
Jul 15, 2024
EPSS 0.00
CVE-2024-36456 CRITICAL
Broadcom Symantec PAM 3.4.6 and 4.1.0-4.1.7 - Unauthenticated Remote Command Execution
Jul 15, 2024
EPSS 0.01
Products
fabric_operating_system 95 brocade_sannav 54 tcpreplay 50 brightstor_arcserve_backup 41 brocade_fabric_operating_system_firmware 26 raid_controller_web_interface 22 sannav 20 brightstor_enterprise_backup 19 Symantec Privileged Access Management 17 advanced_secure_gateway 16 business_protection_suite 16 etrust_antivirus 16 etrust_intrusion_detection 16 BCM5820X 13 inoculateit 13 server_protection_suite 13 symantec_proxysg 13 arcserve_backup 12 rabbitmq_server 12 brightstor_arcserve_backup_laptops_desktops 11 brocade_fabric_operating_system 11 etrust_ez_antivirus 11 symantec_critical_system_protection 11 ca_api_developer_portal 10 desktop_management_suite 10 dx_netops_spectrum 10 etrust_ez_armor 10 etrust_secure_content_manager 10 privileged_access_manager 10 etrust_antivirus_gateway 9
Quick Filters
Critical CVEs With Exploits In CISA KEV