Vulnerability Details CVE-2016-8206
A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary files, and consequently delete the files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.145
EPSS Ranking 96.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 6.4
References
- http://www.securityfocus.com/bid/95692
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179
- http://www.securityfocus.com/bid/95692
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179
Products affected by CVE-2016-8206
-
cpe:2.3:a:brocade:network_advisor:11.0.0.0
-
cpe:2.3:a:brocade:network_advisor:11.0.2.0