Vendor CVEs
Broadcom Corporation
All CVEs
490 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-7397 | 0.00 | — | 0.00 | Jul 17, 2025 | A vulnerability in the ascgshell, of Brocade ASCG before 3.3.0 stores any command executed in the Command Line Interface (CLI) in plain text within the command history. A local authenticated user that can access sensitive information like passwords within the CLI history… | |||
| CVE-2025-6392 | 0.00 | — | 0.00 | Jul 10, 2025 | Brocade SANnav before Brocade SANnav 2.4.0a could log database passwords in clear text in audit logs when the daily data dump collector invokes docker exec commands. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only… | |||
| CVE-2025-6390 | 0.00 | — | 0.00 | Jul 10, 2025 | Brocade SANnav before SANnav 2.4.0a logs passwords and pbe keys in the Brocade SANnav server audit logs after installation and under specific conditions. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the… | |||
| CVE-2025-4662 | 0.00 | — | 0.00 | Jul 10, 2025 | Brocade SANnav before SANnav 2.4.0a logs plaintext passphrases in the Brocade SANnav host server audit logs while executing OpenSSL command using a passphrase from the command line or while providing the passphrase through a temporary file. These audit logs are the local server… | |||
| CVE-2025-4663 | 0.00 | — | 0.00 | Jul 8, 2025 | An Improper Check for Unusual or Exceptional Conditions vulnerability in Brocade Fabric OS before 9.2.2.a could allow an authenticated, network-based attacker to cause a Denial-of-Service (DoS). The vulnerability is encountered when supportsave is invoked remotely, using… | |||
| CVE-2024-22654 | 0.00 | — | 0.00 | May 29, 2025 | tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c. | |||
| CVE-2025-37840 | 0.00 | — | 0.00 | May 9, 2025 | In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: brcmnand: fix PM resume warning Fixed warning on PM resume as shown below caused due to uninitialized struct nand_operation that checks chip select field : WARN_ON(op->cs >=… | |||
| CVE-2025-27925 | 0.00 | — | 0.00 | Mar 10, 2025 | Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input. | |||
| CVE-2023-37229 | 0.00 | — | 0.00 | Sep 10, 2024 | Loftware Spectrum before 5.1 allows SSRF. | |||
| CVE-2023-37234 | 0.00 | — | 0.00 | Sep 10, 2024 | Loftware Spectrum through 4.6 has unprotected JMX Registry. | |||
| CVE-2023-37233 | 0.00 | — | 0.00 | Sep 10, 2024 | Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks. | |||
| CVE-2023-37227 | 0.00 | — | 0.01 | Sep 10, 2024 | Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data. | |||
| CVE-2023-37232 | 0.00 | — | 0.00 | Sep 10, 2024 | Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor. | |||
| CVE-2023-37226 | 0.00 | — | 0.01 | Sep 10, 2024 | Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function. | |||
| CVE-2023-37231 | 0.00 | — | 0.01 | Sep 10, 2024 | Loftware Spectrum before 4.6 HF14 uses a Hard-coded Password. | |||
| CVE-2023-37230 | 0.00 | — | 0.00 | Sep 10, 2024 | Loftware Spectrum (testDeviceConnection) before 5.1 allows SSRF. | |||
| CVE-2024-42148 | 0.00 | — | 0.00 | Jul 30, 2024 | In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings that occur when using a system with 32 physical cpu cores or more, or when the user defines a number of Ethernet queues greater than or… | |||
| CVE-2024-26232 | 0.00 | — | 0.01 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | |||
| CVE-2023-43279 | 0.00 | — | 0.01 | Mar 12, 2024 | Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcpreplay 4.4.4 allows attackers to crash the application via crafted tcprewrite command. | |||
| CVE-2023-34058 | 0.00 | — | 0.01 | Oct 27, 2023 | VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may… | |||
| CVE-2023-34057 | 0.00 | — | 0.00 | Oct 27, 2023 | VMware Tools contains a local privilege escalation vulnerability. A malicious actor with local user access to a guest virtual machine may elevate privileges within the virtual machine. | |||
| CVE-2023-31096 | 0.00 | — | 0.00 | Oct 10, 2023 | An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 (aka AGRSM64.sys). There is Local Privilege Escalation to SYSTEM via a Stack Overflow in RTLCopyMemory (IOCTL 0x1b2150). An attacker can exploit this to elevate privileges from a… | |||
| CVE-2023-44129 | 0.00 | — | 0.00 | Sep 27, 2023 | The vulnerability is that the Messaging ("com.android.mms") app patched by LG forwards attacker-controlled intents back to the attacker in the exported "com.android.mms.ui.QClipIntentReceiverActivity" activity. The attacker can abuse this functionality by launching this activity… | |||
| CVE-2023-23957 | 0.00 | — | 0.00 | Sep 19, 2023 | An authenticated user can see and modify the value for ‘next’ query parameter in Symantec Identity Portal 14.4 | |||
| CVE-2023-31424 | 0.00 | — | 0.01 | Aug 31, 2023 | Brocade SANnav Web interface before Brocade SANnav v2.3.0 and v2.2.2a allows remote unauthenticated users to bypass web authentication and authorization. | |||
| CVE-2023-4162 | 0.00 | — | 0.00 | Aug 31, 2023 | A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg… | |||
| CVE-2023-4163 | 0.00 | — | 0.00 | Aug 31, 2023 | In Brocade Fabric OS before v9.2.0a, a local authenticated privileged user can trigger a buffer overflow condition, leading to a kernel panic with large input to buffers in the portcfgfportbuffers command. | |||
| CVE-2023-4324 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers | |||
| CVE-2023-4325 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities | |||
| CVE-2023-4326 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites | |||
| CVE-2023-4327 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux | |||
| CVE-2023-4328 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows | |||
| CVE-2023-4329 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute | |||
| CVE-2023-4331 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols | |||
| CVE-2023-4332 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file | |||
| CVE-2023-4333 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface doesn’t enforce SSL cipher ordering by server | |||
| CVE-2023-4334 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller Web server (nginx) is serving private files without any authentication | |||
| CVE-2023-4335 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux | |||
| CVE-2023-4336 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute | |||
| CVE-2023-4337 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation | |||
| CVE-2023-4338 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers | |||
| CVE-2023-4339 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions | |||
| CVE-2023-4340 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session prints in the log file | |||
| CVE-2023-4341 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI | |||
| CVE-2023-4342 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy | |||
| CVE-2023-4343 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter | |||
| CVE-2023-4344 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection | |||
| CVE-2023-4323 | 0.00 | — | 0.01 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup | |||
| CVE-2023-4345 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user | |||
| CVE-2023-31926 | 0.00 | — | 0.00 | Aug 2, 2023 | System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0. |
- CVE-2025-7397Jul 17, 2025risk 0.00cvss —epss 0.00
A vulnerability in the ascgshell, of Brocade ASCG before 3.3.0 stores any command executed in the Command Line Interface (CLI) in plain text within the command history. A local authenticated user that can access sensitive information like passwords within the CLI history…
- CVE-2025-6392Jul 10, 2025risk 0.00cvss —epss 0.00
Brocade SANnav before Brocade SANnav 2.4.0a could log database passwords in clear text in audit logs when the daily data dump collector invokes docker exec commands. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only…
- CVE-2025-6390Jul 10, 2025risk 0.00cvss —epss 0.00
Brocade SANnav before SANnav 2.4.0a logs passwords and pbe keys in the Brocade SANnav server audit logs after installation and under specific conditions. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the…
- CVE-2025-4662Jul 10, 2025risk 0.00cvss —epss 0.00
Brocade SANnav before SANnav 2.4.0a logs plaintext passphrases in the Brocade SANnav host server audit logs while executing OpenSSL command using a passphrase from the command line or while providing the passphrase through a temporary file. These audit logs are the local server…
- CVE-2025-4663Jul 8, 2025risk 0.00cvss —epss 0.00
An Improper Check for Unusual or Exceptional Conditions vulnerability in Brocade Fabric OS before 9.2.2.a could allow an authenticated, network-based attacker to cause a Denial-of-Service (DoS). The vulnerability is encountered when supportsave is invoked remotely, using…
- CVE-2024-22654May 29, 2025risk 0.00cvss —epss 0.00
tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c.
- CVE-2025-37840May 9, 2025risk 0.00cvss —epss 0.00
In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: brcmnand: fix PM resume warning Fixed warning on PM resume as shown below caused due to uninitialized struct nand_operation that checks chip select field : WARN_ON(op->cs >=…
- CVE-2025-27925Mar 10, 2025risk 0.00cvss —epss 0.00
Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input.
- CVE-2023-37229Sep 10, 2024risk 0.00cvss —epss 0.00
Loftware Spectrum before 5.1 allows SSRF.
- CVE-2023-37234Sep 10, 2024risk 0.00cvss —epss 0.00
Loftware Spectrum through 4.6 has unprotected JMX Registry.
- CVE-2023-37233Sep 10, 2024risk 0.00cvss —epss 0.00
Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.
- CVE-2023-37227Sep 10, 2024risk 0.00cvss —epss 0.01
Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data.
- CVE-2023-37232Sep 10, 2024risk 0.00cvss —epss 0.00
Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor.
- CVE-2023-37226Sep 10, 2024risk 0.00cvss —epss 0.01
Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function.
- CVE-2023-37231Sep 10, 2024risk 0.00cvss —epss 0.01
Loftware Spectrum before 4.6 HF14 uses a Hard-coded Password.
- CVE-2023-37230Sep 10, 2024risk 0.00cvss —epss 0.00
Loftware Spectrum (testDeviceConnection) before 5.1 allows SSRF.
- CVE-2024-42148Jul 30, 2024risk 0.00cvss —epss 0.00
In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings that occur when using a system with 32 physical cpu cores or more, or when the user defines a number of Ethernet queues greater than or…
- CVE-2024-26232Apr 9, 2024risk 0.00cvss —epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- CVE-2023-43279Mar 12, 2024risk 0.00cvss —epss 0.01
Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcpreplay 4.4.4 allows attackers to crash the application via crafted tcprewrite command.
- CVE-2023-34058Oct 27, 2023risk 0.00cvss —epss 0.01
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may…
- CVE-2023-34057Oct 27, 2023risk 0.00cvss —epss 0.00
VMware Tools contains a local privilege escalation vulnerability. A malicious actor with local user access to a guest virtual machine may elevate privileges within the virtual machine.
- CVE-2023-31096Oct 10, 2023risk 0.00cvss —epss 0.00
An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 (aka AGRSM64.sys). There is Local Privilege Escalation to SYSTEM via a Stack Overflow in RTLCopyMemory (IOCTL 0x1b2150). An attacker can exploit this to elevate privileges from a…
- CVE-2023-44129Sep 27, 2023risk 0.00cvss —epss 0.00
The vulnerability is that the Messaging ("com.android.mms") app patched by LG forwards attacker-controlled intents back to the attacker in the exported "com.android.mms.ui.QClipIntentReceiverActivity" activity. The attacker can abuse this functionality by launching this activity…
- CVE-2023-23957Sep 19, 2023risk 0.00cvss —epss 0.00
An authenticated user can see and modify the value for ‘next’ query parameter in Symantec Identity Portal 14.4
- CVE-2023-31424Aug 31, 2023risk 0.00cvss —epss 0.01
Brocade SANnav Web interface before Brocade SANnav v2.3.0 and v2.2.2a allows remote unauthenticated users to bypass web authentication and authorization.
- CVE-2023-4162Aug 31, 2023risk 0.00cvss —epss 0.00
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. This could allow an authenticated privileged user local user to crash a Brocade Fabric OS swith using the cli “passwdcfg…
- CVE-2023-4163Aug 31, 2023risk 0.00cvss —epss 0.00
In Brocade Fabric OS before v9.2.0a, a local authenticated privileged user can trigger a buffer overflow condition, leading to a kernel panic with large input to buffers in the portcfgfportbuffers command.
- CVE-2023-4324Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers
- CVE-2023-4325Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities
- CVE-2023-4326Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites
- CVE-2023-4327Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux
- CVE-2023-4328Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows
- CVE-2023-4329Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute
- CVE-2023-4331Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols
- CVE-2023-4332Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file
- CVE-2023-4333Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface doesn’t enforce SSL cipher ordering by server
- CVE-2023-4334Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller Web server (nginx) is serving private files without any authentication
- CVE-2023-4335Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux
- CVE-2023-4336Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute
- CVE-2023-4337Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation
- CVE-2023-4338Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers
- CVE-2023-4339Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions
- CVE-2023-4340Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session prints in the log file
- CVE-2023-4341Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI
- CVE-2023-4342Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy
- CVE-2023-4343Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter
- CVE-2023-4344Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection
- CVE-2023-4323Aug 15, 2023risk 0.00cvss —epss 0.01
Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup
- CVE-2023-4345Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user
- CVE-2023-31926Aug 2, 2023risk 0.00cvss —epss 0.00
System files could be overwritten using the less command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0.
Page 6 of 10