Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2018-6447

A Reflective XSS Vulnerability in HTTP Management Interface in Brocade Fabric OS versions before Brocade Fabric OS v9.0.0, v8.2.2c, v8.2.1e, v8.1.2k, v8.2.0_CBN3, v7.4.2g could allow authenticated attackers with access to the web interface to hijack a user’s session and take over the account.

  • Published: Sep 25, 2020
  • Updated: Apr 13, 2023
  • CVE: CVE-2018-6447
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.4
  • AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

  • Severity: Low
  • Score: 3.5
  • AV:N/AC:M/Au:S/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
broadcom / fabric_operating_system 2.1.2 2.1.2.x
broadcom / fabric_operating_system 2.2 2.2.x
broadcom / fabric_operating_system 3.1 3.1.x
broadcom / fabric_operating_system 8.0.2 8.0.2.x
broadcom / fabric_operating_system 8.0.1 8.0.1.x
broadcom / fabric_operating_system 8.0.0 8.0.0.x
broadcom / fabric_operating_system 8.1.1 8.1.1.x
broadcom / fabric_operating_system 8.1.0 8.1.0.x
broadcom / fabric_operating_system 8.1.2 8.1.2.x
broadcom / fabric_operating_system 8.2.2 8.2.2.x
broadcom / fabric_operating_system 8.1.2j 8.1.2j.x
broadcom / fabric_operating_system 8.1.2f 8.1.2f.x
broadcom / fabric_operating_system 8.1.2e 8.1.2e.x
broadcom / fabric_operating_system 8.1.2d 8.1.2d.x
broadcom / fabric_operating_system 8.1.2c 8.1.2c.x
broadcom / fabric_operating_system 8.1.2b 8.1.2b.x
broadcom / fabric_operating_system 8.1.2a 8.1.2a.x
broadcom / fabric_operating_system 8.2.0a 8.2.0a.x
broadcom / fabric_operating_system 8.2.0 8.2.0.x
broadcom / fabric_operating_system 8.0.2c 8.0.2c.x
broadcom / fabric_operating_system 8.0.2b 8.0.2b.x
broadcom / fabric_operating_system 8.0.2a 8.0.2a.x
broadcom / fabric_operating_system 8.1.1a 8.1.1a.x
broadcom / fabric_operating_system 8.1.0c 8.1.0c.x
broadcom / fabric_operating_system 8.1.0b 8.1.0b.x
broadcom / fabric_operating_system 8.1.0a 8.1.0a.x
broadcom / fabric_operating_system 7.4.0 7.4.0.x
broadcom / fabric_operating_system 7.4.2f 7.4.2f.x
broadcom / fabric_operating_system 7.4.2d 7.4.2d.x
broadcom / fabric_operating_system 7.4.2c 7.4.2c.x
broadcom / fabric_operating_system 7.4.2b 7.4.2b.x
broadcom / fabric_operating_system 7.4.2a 7.4.2a.x
broadcom / fabric_operating_system 7.4.2 7.4.2.x
broadcom / fabric_operating_system 8.0.1b 8.0.1b.x
broadcom / fabric_operating_system 8.0.1a 8.0.1a.x
broadcom / fabric_operating_system 8.0.2f 8.0.2f.x
broadcom / fabric_operating_system 8.0.2d 8.0.2d.x
broadcom / fabric_operating_system 5.2.0a 5.2.0a.x
broadcom / fabric_operating_system 5.2.0 5.2.0.x
broadcom / fabric_operating_system 5.0.5b 5.0.5b.x
broadcom / fabric_operating_system 7.4.1e 7.4.1e.x
broadcom / fabric_operating_system 7.4.1d 7.4.1d.x
broadcom / fabric_operating_system 7.4.1c 7.4.1c.x
broadcom / fabric_operating_system 7.4.1b 7.4.1b.x
broadcom / fabric_operating_system 7.4.1a 7.4.1a.x
broadcom / fabric_operating_system 7.4.1 7.4.1.x
broadcom / fabric_operating_system 8.2.2a 8.2.2a.x
broadcom / fabric_operating_system 8.2.1c 8.2.1c.x
broadcom / fabric_operating_system 8.2.1b 8.2.1b.x
broadcom / fabric_operating_system 8.2.1a 8.2.1a.x
broadcom / fabric_operating_system 8.2.1 8.2.1.x
broadcom / fabric_operating_system 8.2.3 8.2.3.x
broadcom / fabric_operating_system 8.2.2b 8.2.2b.x
broadcom / fabric_operating_system 8.2.2a1 8.2.2a1.x
broadcom / fabric_operating_system 8.2.1d 8.2.1d.x