Vulnerability Details : CVE-2023-5973
Brocade
Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not
properly represent the portName to the user if the portName contains
reserved characters. This could allow an authenticated user to alter the
UI of the Brocade Switch and change ports display.
Published
2024-04-05 03:15:08
Updated
2025-02-13 18:16:03
Products affected by CVE-2023-5973
- cpe:2.3:o:brocade:fabric_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-5973
0.17%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 39 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-5973
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
2.8
|
1.4
|
NIST | 2025-02-04 |
|
4.3
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
2.8
|
1.4
|
Brocade Communications Systems, LLC | 2024-04-05 |
CWE ids for CVE-2023-5973
-
The product does not properly verify that the source of data or communication is valid.Assigned by:
- nvd@nist.gov (Primary)
- sirt@brocade.com (Secondary)
References for CVE-2023-5973
-
https://support.broadcom.com/external/content/SecurityAdvisories/0/23214
Support Content Notification - Support Portal - Broadcom support portalVendor Advisory
-
https://security.netapp.com/advisory/ntap-20240628-0005/
CVE-2023-5973 Brocade Fabric OS Truncated Port Name Vulnerability | NetApp Product SecurityThird Party Advisory
Jump to