How to fix CVE-2025-58382?

Within 24 hours: Identify all Fabric OS systems in your environment and document administrative access points. Within 7 days: Implement network segmentation to restrict administrative access to Fabric OS devices from trusted networks only, enforce MFA on administrative accounts, and audit recent admin activity logs for unauthorized changes. Within 30 days: Establish a patch management plan with the vendor, conduct penetration testing focused on admin credential compromise scenarios, and develop an incident response procedure specific to Fabric OS exploitation.

Is Fabric Operating System affected by CVE-2025-58382?

CVE-2025-58382 affects Fabric Operating System and allows authenticated administrators with remote access to execute arbitrary code, potentially enabling full system compromise.

CVE-2025-58382

HIGH

2026-02-03 [email protected]

7.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

CVE Published

Feb 03, 2026 - 02:16 nvd

HIGH 7.2

Description

A vulnerability in the secure configuration of authentication and management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands as root using “supportsave”, “seccertmgmt”, “configupload” command.

Analysis

Fabric Operating System contains a vulnerability that allows attackers to an authenticated, remote attacker with administrative credentials to execute ar (CVSS 7.2).

Technical Context

affects Fabric Operating System. in the secure configuration of authentication and

management services in Brocade Fabric OS before Fabric OS 9.2.1c2 could

allow an authenticated, remote attacker with administrative credentials

to execute arbitrary commands as root using “supportsave”,

“seccertmgmt”, “configupload” command.

Affected Products

Vendor: Broadcom. Product: Fabric Operating System.

Remediation

Monitor vendor advisories for a patch. Restrict network access to the affected service where possible.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +36

POC: 0

CVE-2025-58382 vulnerability details – vuln.today

Back

CVE-2025-58382

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-58382

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code