CVE-2025-58382
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2026-02-03
Last updated on: 2026-02-06
Assigner: Brocade Communications Systems, LLC
Description
Description
A vulnerability in the secure configuration of authentication and
management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could
allow an authenticated, remote attacker with administrative credentials
to execute arbitrary commands as root using “supportsave”,
“seccertmgmt”, “configupload” command.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| broadcom | fabric_operating_system | to 9.2.1c2 (exc) |
| broadcom | fabric_operating_system | From 9.2.2 (inc) to 9.2.2b (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-305 | The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error. |
