CVE-2026-0383

HIGH

Brocade Fabric OS < 9.2.1c2 - Authenticated Information Disclosure via Insecure File Storage

Title source: llm

Description

A vulnerability in Brocade Fabric OS could allow an authenticated, local attacker with privileges to access the Bash shell to access insecurely stored file contents including the history command.

References (1)

Core 1

Core References

Vendor Advisory

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36851

Scores

CVSS v3 7.8

EPSS 0.0001

EPSS Percentile 1.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-78

Status published

Products (2)

broadcom/fabric_operating_system 10.0.0

broadcom/fabric_operating_system < 9.2.1c2

Published Feb 03, 2026

Tracked Since Feb 18, 2026