Unrated severityCISA KEVNVD Advisory· Published Apr 24, 2025· Updated Feb 26, 2026

Code injection exposure in Fabric OS 9.1.0 through 9.1.1d6

CVE-2025-1976

Description

Brocade Fabric OS versions starting with 9.1.0 have root access removed, however, a local user with admin privilege can potentially execute arbitrary code with full root privileges on Fabric OS versions 9.1.0 through 9.1.1d6.

Affected products

Brocade/Fabric OSv5
Range: Fabric OS versions 9.1.0 through 9.1.1d6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25602mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000