CVE-2025-58382 HIGH

CVE-2025-58382: Privilege escalation in Brocade Fabric before 9.2.1c2 and 9.2.2 through 9.2.2a

Vendor Brocade
Product Fabric OS
Weakness CWE-305
Published February 3, 2026
Last update February 26, 2026

CVSS base score

8.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

Key dates

02Disclosure timeline

February 3, 2026 CVE published
February 26, 2026 Record updated