Vulnerability Description
A Directory Traversal vulnerability in CliMonitorReportServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files including files with sensitive user information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Brocade | Network Advisor | <= 14.0.2 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/95691Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-17-052
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/br
- http://www.securityfocus.com/bid/95691Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-17-052
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/br
FAQ
What is CVE-2016-8207?
CVE-2016-8207 is a vulnerability with a CVSS score of 7.5 (HIGH). A Directory Traversal vulnerability in CliMonitorReportServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files inclu...
How severe is CVE-2016-8207?
CVE-2016-8207 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-8207?
Check the references section above for vendor advisories and patch information. Affected products include: Brocade Network Advisor.