Privilege issues in multiple commands

Vulnerability

A privilege escalation vulnerability exists in Brocade Fabric OS (FOS) through manipulation of passwords or other variables using commands such as portcfgupload, configupload, license, and myid. Affected versions are Brocade Fabric OS before v9.1.1c and v9.2.0 [1]. The exact mechanism is not publicly detailed but involves improper privilege checks when processing these commands.

Exploitation

An attacker requires a non-privileged account on a vulnerable Fabric OS system. By crafting inputs to one of the listed commands—portcfgupload, configupload, license, or myid—the attacker can manipulate password-related or other variables to trigger the privilege escalation. No additional user interaction or network position is required beyond authenticated CLI access [1].

Impact

Successful exploitation grants the attacker root (superuser) privileges on the affected Brocade switch or SAN device. This allows full control over the device, including configuration modification, data access, and disruption of operations, representing a complete compromise of confidentiality, integrity, and availability [1].

Mitigation

The vulnerability is fixed in Brocade Fabric OS v9.1.1c and v9.2.0 [1]. Users should upgrade to one of these patched versions immediately. Broadcom advises applying the latest firmware as per their security advisory BSA-2023-2329. No workarounds are documented; there are no reports of this CVE being listed in the Known Exploited Vulnerabilities (KEV) catalog as of publication.