CVE-2021-27795

Published Dec 6, 2023

Last updated a year ago

CVSS high 8.1

Overview

Description: Brocade Fabric OS (FOS) hardware platforms running any version of Brocade Fabric OS software, which supports the license string format; contain cryptographic issues that could allow for the installation of forged or fraudulent license keys. This would allow attackers or a malicious party to forge a counterfeit license key that the Brocade Fabric OS platform would authenticate and activate as if it were a legitimate license key.
Source: sirt@brocade.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.1
Impact score: 5.9
Exploitability score: 2.2
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-327
sirt@brocade.com: CWE-327

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "514B80C9-FB9A-46FF-A58F-F90D695CD6EF"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_610:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "71B3C11A-72A1-40E7-8062-FDCE8B31BF45"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_6505:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BFE32859-8F51-41C0-829F-E2C7C70D2B32"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_6510:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EB73E604-D2BA-463E-8F89-B6FA2D762C49"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_6520:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1AD15038-420D-456C-9E46-1F68730D5294"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_7800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A3E8C687-7999-4FC9-B6F0-8235808B2113"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_7810:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E297EC07-ACD9-44CB-A52E-E8D77F1AB3B8"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_7840:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3A3BC204-ED15-4F07-A493-D688A02E2AF4"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_g620:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D3C167A2-3A1D-4A7C-8BB0-E923F774DAE2"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_g630:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3CBE84E8-4D66-4CE7-B6D9-F67F92014C5C"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_x6-4_director:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "03D3425B-AADB-4507-9D9D-907BD49359B0"
          },
          {
            "criteria": "cpe:2.3:h:broadcom:brocade_x6-8_director:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1FF27302-C9A5-4C62-B97D-BFEDAE2F9F5E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A924BA8-278D-42F8-9A38-AE1087384629"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References