CVE-2021-27789

The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. An attacker who has compromised the FOS system may utilize this weakness to capture sensitive information, such as user credentials.

Published: Mar 18, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-27789
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
broadcom / fabric_operating_system	9.0.0	9.0.1a
broadcom / fabric_operating_system	-	8.2.3a

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1494

Vulnerability Database

289,871

CVE-2021-27789