What is CVE-2023-31432?

CVE-2023-31432 is a high-severity vulnerability in Brocade Fabric Os, classified under Improper Privilege Management. CVSS score: 7.8/10. Published 2023-08-01.

How severe is CVE-2023-31432?

High severity. CVSS v3 base score is 7.8 out of 10.

Privilege escalation in Brocade Fabric Os

CVE-2023-31432

Through manipulation of passwords or other variables, using commands such as portcfgupload, configupload, license, myid, a non-privileged user could obtain root privileges in Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c and…

Vulnerability class: Privilege Escalation

EPSS: 0.001 (16.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Brocade Fabric Os — versions before Brocade Fabric OS v9.1.1c and v9.2.0

Weakness classification (CWE)

CWE-269 — Improper Privilege Management

References

support.broadcom.com/external/content/SecurityAdvisories/0/22385
security.netapp.com/advisory/ntap-20230908-0007/

Frequently asked questions

What is CVE-2023-31432?: CVE-2023-31432 is a high-severity vulnerability in Brocade Fabric Os, classified under Improper Privilege Management. CVSS score: 7.8/10. Published 2023-08-01.
How severe is CVE-2023-31432?: High severity. CVSS v3 base score is 7.8 out of 10.