CVE-2020-15372 Information

Description

A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2.2a1 8.2.2c v7.4.2g v8.2.0_CBN3 v8.2.1e v8.1.2k v9.0.0 could allow a local authenticated attacker to modify shell variables which may lead to an escalation of privileges or bypassing the logging.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Reference

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2020-1081

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

HIGH

Base Score

NONE

Base Severity

5.5