1. CVE-Search
  2. CVE-2018-6441
ID CVE-2018-6441
Summary A vulnerability in Secure Shell implementation of Brocade Fabric OS versions before 8.2.1, 8.1.2f, 8.0.2f, 7.4.2d could allow a local attacker to provide arbitrary environment variables, and bypass the restricted configuration shell.
References
Vulnerable Configurations
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:-:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:-:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:a:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:a:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:b:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:b:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:c:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:c:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:d:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:d:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:e:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:e:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:f:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:f:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:j:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:j:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:k:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.1.2:k:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:-:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:-:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:a:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:a:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:cbn3:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.2.0:cbn3:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:-:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:-:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:a:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:a:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:b:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:b:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:c:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:c:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:d:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:d:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:f:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:8.0.2:f:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:-:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:-:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:a:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:a:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:b:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:b:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:c:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:c:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:d:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:d:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:f:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:f:*:*:*:*:*:*
  • cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:g:*:*:*:*:*:*
    cpe:2.3:o:broadcom:fabric_operating_system:7.4.2:g:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 22-06-2021 - 15:20)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
confirm https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-734
Last major update 22-06-2021 - 15:20
Published 08-11-2018 - 14:29
Last modified 22-06-2021 - 15:20
Back to Top