CVE-2023-31430

MEDIUM

Brocade Fabric OS <9.1.1c, 9.2.0 - Buffer Overflow

Title source: llm

Description

A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to a denial of service.

References (2)

Core 2

Core References

Third Party Advisory

https://security.netapp.com/advisory/ntap-20230908-0007/

Vendor Advisory

https://support.broadcom.com/external/content/SecurityAdvisories/0/22381

Scores

CVSS v3 5.5

EPSS 0.0004

EPSS Percentile 11.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-120

Status published

Products (2)

broadcom/brocade_fabric_operating_system 9.2.0

broadcom/brocade_fabric_operating_system < 9.1.1c

Published Aug 02, 2023

Tracked Since Feb 18, 2026