CVE-2025-1976

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Apr 24, 2025

Updated: Apr 29, 2025

CWE ID 78

CWE ID 94

Summary

CVE-2025-1976 is a vulnerability affecting Brocade Fabric OS versions starting from 9.1.0. Although root access is removed on these versions, a local user holding administrative privileges can exploit a loophole to gain full root access and execute arbitrary code on Fabric OS versions 9.1.0 through 9.1.1d6. This issue poses a significant security risk, as unauthorized users with admin privileges can potentially misuse the vulnerability to impact network operations or steal sensitive data. Users are advised to update their Fabric OS versions to the latest patch, or to employ additional security measures to mitigate the risk of this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Broadcom

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners