Debug Statements Expose Sensitive Information in Brocade Fabric OS

Debug Statements Expose Sensitive Information in Brocade Fabric OS

CVE-2021-27789 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. An attacker who has compromised the FOS system may utilize this weakness to capture sensitive information, such as user credentials.

Learn more about our Web App Pen Testing.