CVE-2025-58380: Directory transversal vulnerability in Brocade Fabric OS before 9.2.1 using grep command

Q: What is the severity of CVE-2025-58380?

CVE-2025-58380 has been classified as a high severity vulnerability due to its ability to allow authenticated attackers to access sensitive file directories.

Q: How do I fix CVE-2025-58380?

To fix CVE-2025-58380, upgrade Brocade Fabric OS to version 9.2.1 or later where the vulnerability has been addressed.

Q: Who is affected by CVE-2025-58380?

CVE-2025-58380 affects all versions of Brocade Fabric OS prior to 9.2.1.

Q: What type of vulnerability is CVE-2025-58380?

CVE-2025-58380 is a directory traversal vulnerability that allows privilege escalation through malformed path manipulation.

Q: Can CVE-2025-58380 be exploited remotely?

CVE-2025-58380 cannot be exploited remotely as it requires authenticated admin access to exploit the vulnerability.

Published Feb 3, 2026

Updated

A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different directories.

Affected Software

2 affected components

Brocade Fabric OS<9.2.1

Broadcom Fabric Operating System<9.2.1

Event History

Feb 3, 2026

CVE Published

via MITRE·05:05 AM

Data Sourced

via MITRE·05:05 AM

DescriptionWeakness

Data Sourced

via NVD·05:16 AM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2025-58380?

CVE-2025-58380 has been classified as a high severity vulnerability due to its ability to allow authenticated attackers to access sensitive file directories.

How do I fix CVE-2025-58380?

To fix CVE-2025-58380, upgrade Brocade Fabric OS to version 9.2.1 or later where the vulnerability has been addressed.

Who is affected by CVE-2025-58380?

CVE-2025-58380 affects all versions of Brocade Fabric OS prior to 9.2.1.

What type of vulnerability is CVE-2025-58380?

CVE-2025-58380 is a directory traversal vulnerability that allows privilege escalation through malformed path manipulation.

Can CVE-2025-58380 be exploited remotely?

CVE-2025-58380 cannot be exploited remotely as it requires authenticated admin access to exploit the vulnerability.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.