Aggregates CVE and security vulnerability intelligence across all Broadcom-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk path handling, vendor risk sql injection, and vendor risk open redirect and related problems; some flaws may lead to vendor impact file overwrite and vendor impact data exposure.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-8661 | A stored Cross-Site Scripting vulnerability (XSS) occurs when the server does not properly validate or encode the data entered by the user. | [email protected] | 4.6 | 0.15% | 2025-08-11 | 2026-06-17 |
| CVE-2025-8660 | Privilege escalation occurs when a user gets access to more resources or functionality than they are normally allowed. | [email protected] | 5.6 | 0.29% | 2025-08-11 | 2026-06-17 |
| CVE-2025-7398 | Brocade ASCG before 3.3.0 allows for the use of medium strength cryptography algorithms on internal ports ports 9000 and 8036. | [email protected] | 8.6 | 0.15% | 2025-07-17 | 2026-06-17 |
| CVE-2025-6391 | Brocade ASCG before 3.3.0 logs JSON Web Tokens (JWT) in log files. An attacker with access to the log files can withdraw the unencrypted tokens with security implications, such as unauthorized access, session hijacking, and information disclosure. | [email protected] | 7.1 | 0.23% | 2025-07-17 | 2026-06-17 |
| CVE-2025-6392 | Brocade SANnav before Brocade SANnav 2.4.0a could log database passwords in clear text in audit logs when the daily data dump collector invokes docker exec commands. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the server admin of the host server and are not visible to the SANnav admin or any SANnav user. | [email protected] | 6.7 | 0.10% | 2025-07-10 | 2026-06-17 |
| CVE-2025-6390 | Brocade SANnav before SANnav 2.4.0a logs passwords and pbe keys in the Brocade SANnav server audit logs after installation and under specific conditions. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the server admin of the host server and are not visible to the SANnav admin or any SANnav user. | [email protected] | 5.1 | 0.10% | 2025-07-10 | 2026-06-17 |
| CVE-2025-4662 | Brocade SANnav before SANnav 2.4.0a logs plaintext passphrases in the Brocade SANnav host server audit logs while executing OpenSSL command using a passphrase from the command line or while providing the passphrase through a temporary file. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the server admin of the host server and are not visible to the SANnav admin or any SANnav user. | [email protected] | 5.1 | 0.10% | 2025-07-10 | 2026-06-17 |
| CVE-2025-4663 | An Improper Check for Unusual or Exceptional Conditions vulnerability in Brocade Fabric OS before 9.2.2.a could allow an authenticated, network-based attacker to cause a Denial-of-Service (DoS). The vulnerability is encountered when supportsave is invoked remotely, using ssh command or SANnav inline ssh, and the corresponding ssh session is terminated with Control C (^c ) before supportsave completion. This issue affects Brocade Fabric OS 9.0.0 through 9.2.2 | [email protected] | 6.8 | 0.30% | 2025-07-08 | 2026-06-17 |
| CVE-2025-50200 | RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which show base64 encoded username:password. This is easy to decode and afterwards could be used to obtain control to the system depending on credentials. This issue has been patched in version 4.0.8. | [email protected] | 6.7 | 0.19% | 2025-06-19 | 2026-06-17 |
| CVE-2025-4661 | A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local admin user to gain access to files outside the intended directory potentially leading to the disclosure of sensitive information. Note: Admin level privilege is required on the switch in order to exploit | [email protected] | 4.8 | 0.18% | 2025-06-18 | 2026-06-17 |
| CVE-2025-22245 | VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the router port due to improper input validation. | [email protected] | 5.9 | 0.16% | 2025-06-04 | 2026-06-17 |
| CVE-2025-22244 | VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the gateway firewall due to improper input validation. | [email protected] | 6.9 | 0.26% | 2025-06-04 | 2026-06-17 |
| CVE-2025-22243 | VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation. | [email protected] | 7.5 | 0.31% | 2025-06-04 | 2026-06-17 |
| CVE-2024-22654 | tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c. | [email protected] | 7.5 | 0.37% | 2025-05-29 | 2026-06-17 |
| CVE-2025-22248 | The bitnami/pgpool Docker image, and the bitnami/postgres-ha k8s chart, under default configurations, comes with an 'repmgr' user that allows unauthenticated access to the database inside the cluster. The PGPOOL_SR_CHECK_USER is the user that Pgpool itself uses to perform streaming replication checks against nodes, and should not be at trust level. This allows to log into a PostgreSQL database using the repgmr user without authentication. If Pgpool is exposed externally, a potential attacker cou | [email protected] | 9.4 | 0.44% | 2025-05-13 | 2026-06-17 |
| CVE-2025-3599 | Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be susceptible to an Elevation of Privilege vulnerability, which may allow an attacker to delete resources that are normally protected from an application or user. | [email protected] | 6.5 | 0.23% | 2025-04-30 | 2026-06-17 |
| CVE-2025-1976 KEV | Brocade Fabric OS versions starting with 9.1.0 have root access removed, however, a local user with admin privilege can potentially execute arbitrary code with full root privileges on Fabric OS versions 9.1.0 through 9.1.1d6. | [email protected] | 8.6 | 0.75% | 2025-04-23 | 2026-06-17 |
| CVE-2024-1509 | Brocade ASCG before 3.2.0 Web Interface is not enforcing HSTS, as defined by RFC 6797. HSTS is an optional response header that can be configured on the server to instruct the browser to only communicate via HTTPS. The lack of HSTS allows downgrade attacks, SSL-stripping man-in-the-middle attacks, and weakens cookie-hijacking protections. | [email protected] | 7.6 | 0.34% | 2025-02-28 | 2026-06-17 |
| CVE-2024-5462 | If Brocade Fabric OS before Fabric OS 9.2.0 configuration settings are not set to encrypt SNMP passwords, then the SNMP privsecret / authsecret fields can be exposed in plaintext. The plaintext passwords can be exposed in a configupload capture or a supportsave capture if encryption of passwords is not enabled. An attacker can use these passwords to fetch values of the supported OIDs via SNMPv3 queries. There are also a limited number of MIB objects that can be modified. | [email protected] | 5.3 | 0.10% | 2025-02-14 | 2026-06-17 |
| CVE-2024-5461 | Implementation of the Simple Network Management Protocol (SNMP) operating on the Brocade 6547 (FC5022) embedded switch blade, makes internal script calls to system.sh from within the SNMP binary. An authenticated attacker could perform command or parameter injection on SNMP operations that are only enabled on the Brocade 6547 (FC5022) embedded switch. This injection could allow the authenticated attacker to issue commands as Root. | [email protected] | 8.6 | 0.42% | 2025-02-14 | 2026-06-17 |