CVE-2021-27793

MEDIUM

Brocade Fabric OS <9.0.1b & >8.2.0 - Privilege Escalation

Title source: llm

Description

ntermittent authorization failure in aaa tacacs+ with Brocade Fabric OS versions before Brocade Fabric OS v9.0.1b and after 9.0.0, also in Brocade Fabric OS before Brocade Fabric OS v8.2.3a and after v8.2.0 could cause a user with a valid account to be unable to log into the switch.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1553

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20210819-0001/

Scores

CVSS v3 5.3

EPSS 0.0032

EPSS Percentile 55.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-863

Status published

Products (4)

broadcom/fabric_operating_system 8.2.3

broadcom/fabric_operating_system 9.0.1

broadcom/fabric_operating_system 9.0.1a

broadcom/fabric_operating_system 8.2.0 - 8.2.3

Published Aug 12, 2021

Tracked Since Feb 18, 2026