CVE-2025-4663

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-4663
An Improper Check for Unusual or Exceptional Conditions vulnerability in Brocade Fabric OS before 9.2.2.a could allow an authenticated, network-based attacker to cause a Denial-of-Service (DoS). The vulnerability is encountered when supportsave is invoked remotely, using ssh command or SANnav inline ssh, and the corresponding ssh session is terminated with Control C (^c ) before supportsave completion. This issue affects Brocade Fabric OS 9.0.0 through 9.2.2

4.9 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35815 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:9.2.2:*:*:*:*:*:*:*
History

20 Feb 2026, 21:22

Type Values Removed Values Added
CPE cpe:2.3:o:brocade:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:brocade:fabric_operating_system:9.2.2:*:*:*:*:*:*:*		 cpe:2.3:o:broadcom:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:fabric_operating_system:9.2.2:*:*:*:*:*:*:*
First Time Broadcom fabric Operating System
Broadcom

02 Feb 2026, 16:03

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 4.9
First Time Brocade fabric Operating System
Brocade
References () https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35815 - () https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35815 - Vendor Advisory
CPE cpe:2.3:o:brocade:fabric_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:brocade:fabric_operating_system:9.2.2:*:*:*:*:*:*:*

10 Jul 2025, 13:18

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de Comprobación Incorrecta de Condiciones Inusuales o Excepcionales en Brocade Fabric OS anterior a la versión 9.2.2.a podría permitir que un atacante autenticado basado en la red provoque una Denegación de Servicio (DoS). La vulnerabilidad se detecta cuando se invoca supportave remotamente mediante el comando ssh o SANnav inline ssh, y la sesión ssh correspondiente se finaliza con Control C (^c) antes de que se complete supportave. Este problema afecta a Brocade Fabric OS 9.0.0 a 9.2.2.

08 Jul 2025, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-07-08 18:15

Updated : 2026-02-20 21:22

NVD link : CVE-2025-4663

Mitre link : CVE-2025-4663

CVE.ORG link : CVE-2025-4663

JSON object : View

Products Affected

broadcom

  • fabric_operating_system
CWE
CWE-754

Improper Check for Unusual or Exceptional Conditions