CVE-2023-4162: Segmentation fault in Brocade Fabric OS after Brocade Fabric OS v9.0
First published: Thu Aug 31 2023(Updated: )
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg --set -expire -minDiff“.
Credit: sirt@brocade.com sirt@brocade.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Brocade Fabric Operating System | >=9.0.1a<9.2.0a | |
| >=9.0.1a<9.2.0a |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-4162?
CVE-2023-4162 is a vulnerability that can cause a segmentation fault in Brocade Fabric OS, versions v9.0 to v9.2.0a, through the passwdcfg command.
How severe is CVE-2023-4162?
CVE-2023-4162 has a severity value of 4.4, which is classified as medium severity.
What is the affected software for CVE-2023-4162?
The affected software for CVE-2023-4162 is Brocade Fabric Operating System, versions v9.0.1a to v9.2.0a.
How can an attacker exploit CVE-2023-4162?
An attacker can exploit CVE-2023-4162 by using the cli command 'passwdcfg --set -expire -minDiff' on a Brocade Fabric OS switch as an authenticated privileged user.
Is there a fix for CVE-2023-4162?
Yes, a fix for CVE-2023-4162 is available. Please refer to the reference link for more information.
- collector/nvd-index
- agent/references
- agent/author
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/severity
- agent/title
- agent/weakness
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- vendor/brocade
- canonical/brocade fabric operating system
- version/brocade fabric operating system/9.0.1a