QwikSec

Security Database

CVE

CWE

Training

CVE-2021-27792

Published: Aug 12, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

The request handling functions in web management interface of Brocade Fabric OS versions before v9.0.1a, v8.2.3a, and v7.4.2h do not properly handle malformed user input, resulting in a service crash. An authenticated attacker could use this weakness to cause the FOS HTTP application handler to crash, requiring a reboot.

Vendor	Product	Versions
n/a	Brocade Fabric OS	affected `Brocade Fabric OS versions before v9.0.1a, and v8.2.3a, and v7.4.2h`

References

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1490

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210819-0002/

x_refsource_CONFIRM

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1492

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.