CVE-2018-6444: OS Command Injection
First published: Tue Jan 22 2019(Updated: )
A Vulnerability in Brocade Network Advisor versions before 14.1.0 could allow a remote unauthenticated attacker to execute arbitray code. The vulnerability could also be exploited to execute arbitrary OS Commands.
Credit: sirt@brocade.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Brocade Network Advisor | <14.1.0 | |
| Netapp Brocade Network Advisor |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2018-6444.
What is the severity of CVE-2018-6444?
The severity of CVE-2018-6444 is critical with a severity value of 9.8.
Which software versions are affected by CVE-2018-6444?
Brocade Network Advisor versions before 14.1.0 and Netapp Brocade Network Advisor are affected by CVE-2018-6444.
What can a remote unauthenticated attacker do with CVE-2018-6444?
A remote unauthenticated attacker can execute arbitrary code and arbitrary OS commands with CVE-2018-6444.
Where can I find more information about CVE-2018-6444?
You can find more information about CVE-2018-6444 at the following references: [Link 1](https://security.netapp.com/advisory/ntap-20190411-0005/), [Link 2](https://support.lenovo.com/us/en/product_security/LEN-25655), [Link 3](https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-744).
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/brocade
- canonical/brocade network advisor
- vendor/netapp
- canonical/netapp brocade network advisor