CVE-2022-33184

A vulnerability in fab_seg.c.h libraries of all Brocade Fabric OS versions before Brocade Fabric OS v9.1.1, v9.0.1e, v8.2.3c, v8.2.0_cbn5, 7.4.2j could allow local authenticated attackers to exploit stack-based buffer overflows and execute arbitrary code as the root user account.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*

History

02 Mar 2023, 16:06

Type Values Removed Values Added
References (CONFIRM) https://security.netapp.com/advisory/ntap-20230127-0009/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20230127-0009/ - Third Party Advisory

27 Jan 2023, 20:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20230127-0009/ -

28 Oct 2022, 13:13

Type Values Removed Values Added
CPE cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
First Time Broadcom fabric Operating System
Broadcom
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-787
References (MISC) https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2080 - (MISC) https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2080 - Vendor Advisory

25 Oct 2022, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-10-25 21:15

Updated : 2023-12-10 14:35


NVD link : CVE-2022-33184

Mitre link : CVE-2022-33184

CVE.ORG link : CVE-2022-33184


JSON object : View

Products Affected

broadcom

  • fabric_operating_system
CWE
CWE-787

Out-of-bounds Write