Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
broadcomBroadcom Security ResponseBSA-2022-2077
HistorySep 13, 2022 - 12:00 a.m.

CVE-2022-33178. A vulnerability in the radius authentication system could allow arbitrary code execution.

2022-09-1300:00:00
Broadcom Security Response
www.broadcom.com
26
cve-2022-33178
brocade fabric os
authentication system
arbitrary code execution
remote attacker
input validation
privileged attacker
penetration testing
linux
architecture
software vulnerability

EPSS

0.005

Percentile

75.6%

JSON

A vulnerability in the radius authentication system of Brocade Fabric OS before Brocade Fabric OS 9.0 could allow a remote attacker to execute arbitrary code on the Brocade switch.

Due to improper input validation, the privileged attacker could provide a script as Brocade-Auth-Role parameter that could be executed.

Note: The issue was found during penetration testing against an older version of Brocade Fabric OS. Updated linux and architecture introduced with Brocade Fabric OS 9.0.0 prevents this attack and is not vulnerable.

Affected Product

All Brocade Fabric OS versions before 9.0.0

Related

prion 1
cve 1
nvd 1
cvelist 1
broadcom 1
prion
prion
Authentication flaw
2022-10-25 21:15:00
cve
cve
CVE-2022-33178
2022-10-25 21:15:46
nvd
nvd
CVE-2022-33178
2022-10-25 21:15:46
cvelist
cvelist
CVE-2022-33178
2022-10-25 00:00:00
broadcom
broadcom
CVE-2022-33178. A vulnerability in the radius authentication system could allow arbitrary code execution.
2022-09-13 00:00:00

EPSS

0.005

Percentile

75.6%

JSON
Related for BSA-2022-2077
prion1cve1nvd1cvelist1broadcom1