CVE-2025-58381: Directory transversal vulnerability in Brocade Fabric OS before 9.2.1c2 and 9.2.2 through 9.2.2a using various shell commands

Q: What is the severity of CVE-2025-58381?

CVE-2025-58381 is classified as a high severity vulnerability due to its potential to allow authenticated attackers to execute arbitrary shell commands.

Q: How do I fix CVE-2025-58381?

To mitigate CVE-2025-58381, upgrade Brocade Fabric OS to version 9.2.1c3 or later.

Q: What systems are affected by CVE-2025-58381?

CVE-2025-58381 affects Brocade Fabric OS versions prior to 9.2.1c2 and from 9.2.2 through 9.2.2a.

Q: Who can exploit CVE-2025-58381?

CVE-2025-58381 can be exploited by authenticated attackers with admin privileges on the affected system.

Q: What type of vulnerability is CVE-2025-58381?

CVE-2025-58381 is a directory transversal vulnerability that can lead to unauthorized access to file system paths.

Published Feb 3, 2026

Updated

A vulnerability in Brocade Fabric OS before 9.2.1c2 could allow an authenticated attacker with admin privileges using the shell commands “source, ping6, sleep, disown, wait to modify the path variables and move upwards in the directory structure or to traverse to different directories.

Affected Software

3 affected components

Brocade Fabric OS<9.2.1c2, >=9.2.2<9.2.2a

Broadcom Fabric Operating System<9.2.1c2

Broadcom Fabric Operating System>=9.2.2<9.2.2b

Event History

Feb 3, 2026

CVE Published

via MITRE·05:40 AM

Data Sourced

via MITRE·05:40 AM

DescriptionWeakness

Data Sourced

via NVD·06:15 AM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2025-58381?

CVE-2025-58381 is classified as a high severity vulnerability due to its potential to allow authenticated attackers to execute arbitrary shell commands.

How do I fix CVE-2025-58381?

To mitigate CVE-2025-58381, upgrade Brocade Fabric OS to version 9.2.1c3 or later.

What systems are affected by CVE-2025-58381?

CVE-2025-58381 affects Brocade Fabric OS versions prior to 9.2.1c2 and from 9.2.2 through 9.2.2a.

Who can exploit CVE-2025-58381?

CVE-2025-58381 can be exploited by authenticated attackers with admin privileges on the affected system.

What type of vulnerability is CVE-2025-58381?

CVE-2025-58381 is a directory transversal vulnerability that can lead to unauthorized access to file system paths.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.