Vulnerability Description
A reflected cross-site scripting (XSS) vulnerability exists in Brocade Webtools PortSetting.html of Brocade Fabric OS version before Brocade Fabric OS v9.2.0 that could allow a remote unauthenticated attacker to execute arbitrary JavaScript code in a target user’s session with the Brocade Webtools application.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brocade Fabric Operating System | < 9.2.0 |
Related Weaknesses (CWE)
References
- https://security.netapp.com/advisory/ntap-20230908-0007/Third Party Advisory
- https://support.broadcom.com/external/content/SecurityAdvisories/0/22390Vendor Advisory
- https://security.netapp.com/advisory/ntap-20230908-0007/Third Party Advisory
- https://support.broadcom.com/external/content/SecurityAdvisories/0/22390Vendor Advisory
FAQ
What is CVE-2023-31928?
CVE-2023-31928 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A reflected cross-site scripting (XSS) vulnerability exists in Brocade Webtools PortSetting.html of Brocade Fabric OS version before Brocade Fabric OS v9.2.0 that could allow a remote unauthenticated...
How severe is CVE-2023-31928?
CVE-2023-31928 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-31928?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brocade Fabric Operating System.