What is the CVSS score of CVE-2025-58382?

CVE-2025-58382 has a CVSS 3.1 base score of 7.2 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Fabric Operating System are affected by CVE-2025-58382?

CVE-2025-58382 affects Fabric Operating System and allows authenticated administrators with remote access to execute arbitrary code, potentially enabling full system compromise.

How to fix or mitigate CVE-2025-58382?

Within 24 hours: Identify all Fabric OS systems in your environment and document administrative access points. Within 7 days: Implement network segmentation to restrict administrative access to Fabric OS devices from trusted networks only, enforce MFA on administrative accounts, and audit recent admin activity logs for unauthorized changes. Within 30 days: Establish a patch management plan with the vendor, conduct penetration testing focused on admin credential compromise scenarios, and develop an incident response procedure specific to Fabric OS exploitation.

Fabric Operating System CVE-2025-58382

HIGH

Authentication Bypass by Primary Weakness (CWE-305)

2026-02-03 sirt@brocade.com

RCE Fabric Operating System

7.2

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

CVE Published

Feb 03, 2026 - 02:16 nvd

HIGH 7.2

DescriptionNVD

A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

AnalysisAI

Fabric Operating System contains a vulnerability that allows attackers to an authenticated, remote attacker with administrative credentials to execute ar (CVSS 7.2).

Technical ContextAI

affects Fabric Operating System. in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

RemediationAI

Monitor vendor advisories for a patch. Restrict network access to the affected service where possible.

CVE-2025-58382 vulnerability details – vuln.today

Back

Fabric Operating System CVE-2025-58382

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code