CVE-2021-27796
MEDIUMBrocade Fabric OS <8.0.1b,7.4.1d - Privilege Escalation
Title source: llmDescription
A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS v8.0.1b, v7.4.1d could allow an authenticated attacker within the restricted shell environment (rbash) as either the “user” or “factory” account, to read the contents of any file on the filesystem utilizing one of a few available binaries.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1721
Scores
CVSS v3
6.5
EPSS
0.0031
EPSS Percentile
54.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (1)
broadcom/fabric_operating_system
< 7.4.1d
Published
Feb 21, 2022
Tracked Since
Feb 18, 2026