Vulnerability Description
A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary files, and consequently delete the files.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Brocade | Network Advisor | <= 14.0.2 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/95692Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/br
- http://www.securityfocus.com/bid/95692Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-17-051
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/br
FAQ
What is CVE-2016-8206?
CVE-2016-8206 is a vulnerability with a CVSS score of 7.5 (HIGH). A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary fil...
How severe is CVE-2016-8206?
CVE-2016-8206 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-8206?
Check the references section above for vendor advisories and patch information. Affected products include: Brocade Network Advisor.