CVE-2023-31430 MEDIUM

CVE-2023-31430: buffer overflow vulnerability in “secpolicydelete” command

Vendor Brocade
Product Brocade Fabric OS
Weakness CWE-120
Published August 1, 2023
Last update February 13, 2025

CVSS base score

5.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to a denial of service.

Key dates

02Disclosure timeline

August 1, 2023 CVE published
February 13, 2025 Record updated