All fields are required

Thank You, Melissa
We'll be in touch with you shortly
Please check your e-mail to confirm your subscription.
You have been successfully subscribed.
You have been successfully subscribed.
Help yourself to some of Brocade's premium content here
To Complete the subscription process please check your email

Redefine IP Storage Networking

Don't settle for a legacy IP network

Explore

The New IP: Transforming Networks

Revolutionizing business models for the Third Platform

Explore

An Application Boost For The New IP

Free 30-Day Trial: Brocade Virtual Traffic Manager, the leading virtual application delivery platform for the New IP

Explore
Oops, we're sorry!
An error occured while we tried to process your request
Try again
Support

Security Advisories

Brocade takes product security very seriously and is committed to minimizing the risk of exposure to customers' networks. This page provides a list of the latest security vulnerabilities and will be updated if further risks are discovered. To access Technical Support Bulletins (TSB), log in to MyBrocade and expand the “Technical Support Bulletins” category within the documentation section.

Brocade Security Vulnerability Disclosure Policy

To report a potential security vulnerability for Brocade products, please contact sirt@brocade.com.

Security Advisories Information

BSA ID Summary First Published Last Updated

BSA-2016-209

CVE-2016-8201

06 January 2017

06 January 2017

BSA-2016-180

CVE-2016-8207

06 January 2017

06 January 2017

BSA-2016-179

CVE-2016-8206

06 January 2017

06 January 2017

BSA-2016-178

CVE-2016-8205

06 January 2017

06 January 2017

BSA-2016-177

CVE-016-8204

06 January 2017

06 January 2017

BSA-2016-198

CVE-2016-5421

14 December 2016

14 December 2016

BSA-2016-168

Memory corruption vulnerability in the IPsec code path of Brocade NetIron OS.(CVE-2016-8203)

03 October 2016

03 October 2016

BSA-2016-012

N/A

N/A

CVE-2004-2320

CVE-2010-0386

CVE-2014-5455

CVE-2015-5352

CVE-2015-7566

CVE-2015-8785

CVE-2015-8812

CVE-2016-0723

CVE-2016-0774

CVE-2016-1238

CVE-2016-1907

CVE-2016-2069

CVE-2016-2179

CVE-2016-2181

CVE-2016-2182

CVE-2016-2183

CVE-2016-2384

CVE-2016-2543

CVE-2016-3458

CVE-2016-3485

CVE-2016-3498

CVE-2016-3503

CVE-2016-3508

CVE-2016-3511

CVE-2016-3550

CVE-2016-3552

CVE-2016-3587

CVE-2016-3598

CVE-2016-3606

CVE-2016-3610

CVE-2016-5080

CVE-2016-5195

CVE-2016-5419

CVE-2016-5420

CVE-2016-6185

CVE-2016-6210

CVE-2016-6302

CVE-2016-6303

CVE-2016-6304

CVE-2016-6305

CVE-2016-6306

CVE-2016-6307

CVE-2016-6308

CVE-2016-6309

CVE-2016-6329

CVE-2016-6415

CVE-2016-6662

CVE-2016-6663

CVE-2016-6664

CVE-2016-6890

CVE-2016-7052

CVE-2016-8203

CVE-2016-8204

CVE-2016-8205

CVE-2016-8206

24 October 2016

24 October 2016

BSA-2016-011

N/A

N/A

N/A

N/A

N/A

N/A

CVE-2000-1254

CVE-2009-1387

CVE-2012-2663

CVE-2012-3499

CVE-2012-4557

CVE-2013-1896

CVE-2013-6450

CVE-2015-8215

CVE-2015-8324

CVE-2016-1183

CVE-2016-1409

CVE-2016-1762

CVE-2016-1833

CVE-2016-1834

CVE-2016-1835

CVE-2016-1836

CVE-2016-1837

CVE-2016-1838

CVE-2016-1839

CVE-2016-1840

CVE-2016-2073

CVE-2016-2177

CVE-2016-2178

CVE-2016-2180

CVE-2016-3092

CVE-2016-3191

CVE-2016-3627

CVE-2016-3705

CVE-2016-3706

CVE-2016-4008

CVE-2016-4117

CVE-2016-4376

CVE-2016-4429

CVE-2016-4447

CVE-2016-4448

CVE-2016-4449

CVE-2016-4483

CVE-2016-4953

CVE-2016-4954

CVE-2016-4955

CVE-2016-4956

CVE-2016-4957

CVE-2016-5385

CVE-2016-5386

CVE-2016-5387

CVE-2016-5388

CVE-2016-5423

CVE-2016-5424

CVE-2016-5696

17 October 2016

17 October 2016

BSA-2016-010

N/A

CVE-2002-0510

CVE-2004-2760

CVE-2011-3389

CVE-2014-9761

CVE-2015-1931

CVE-2015-2059

CVE-2015-4024

CVE-2015-8325

CVE-2015-8806

CVE-2016-0363

CVE-2016-0695

CVE-2016-0718

CVE-2016-1287

CVE-2016-1343

CVE-2016-1386

CVE-2016-1389

CVE-2016-1547

CVE-2016-1548

CVE-2016-1549

CVE-2016-1550

CVE-2016-1551

CVE-2016-2105

CVE-2016-2106

CVE-2016-2107

CVE-2016-2108

CVE-2016-2109

CVE-2016-2176

CVE-2016-2516

CVE-2016-2517

CVE-2016-2518

CVE-2016-2519

CVE-2016-2847

CVE-2016-2856

CVE-2016-3081

CVE-2016-3115

CVE-2016-3425

CVE-2016-3427

CVE-2016-3739

CVE-2016-4422

10 October 2016

10 October 2016

BSA-2016-009

nCircle Vulnerability

CVE-2006-0225

CVE-2007-1858

CVE-2007-5000

CVE-2007-6203

CVE-2007-6388

CVE-2007-6750

CVE-2008-0005

CVE-2008-1657

CVE-2008-5161

CVE-2011-4327

10 August 2016

10 August 2016

BSA-2016-008

CVE-2016-2842 N/A

CVE (RPC) N/A

CVE (IKE/IKEv2)

10 August 2016

10 August 2016

BSA-2016-007

CVE-2013-4312

CVE-2013-4548

CVE-2014-8121

CVE-2014-9769

CVE-2015-1781

CVE-2015-3195

CVE-2015-4680

CVE-2015-7501

CVE-2015-7691

CVE-2015-7692

CVE-2015-7973

CVE-2015-8767

CVE-2015-8776

CVE-2015-8777

CVE-2015-8778

CVE-2015-8779

CVE-2015-8816

CVE-2015-8830

CVE-2016-1234

16 June 2016

16 June 2016

BSA-2016-006

CVE-2012-3527 - PHP

CVE-2013-1465 - PHP

CVE-2013-4548 - OpenSSH

CVE-2014-8964 - PCRE

CVE-2015-1794 - OpenSSL

CVE-2015-3193 - OpenSSL

CVE-2015-3194 - OpenSSL

CVE-2015-3195 - OpenSSL

CVE-2015-3196 - OpenSSL

CVE-2015-4852 - Oracle

CVE-2015-5276 - GNU

CVE-2015-7973 - NTP

CVE-2015-7978 - NTP

CVE-2016-0636 - Java

CVE-2016-0766 - Java

13 May 2016

14 June 2016

TSB 2016-237-A

PRODUCTS AFFECTED:

Brocade Virtual Traffic Manager

Corrected in Releases:

10.4, 10.3r1, 9.9r1

DEFECTS:

VTM-25358

VTM-25497

21 April 2016

21 April 2016

BSA-2016-005

CVE-2004-2761 - MD5 Message-Digest Algorithm

CVE-2004-0230 - TCP Sequence Number

CVE-2011-2502 - Staprun

CVE-2012-0911 - PHP

CVE-2015-7704 - NTP

CVE-2015-7975 - NTP

CVE-2015-7976 - NTP

CVE-2015-7977 - NTP

CVE-2015-7979 - NTP

CVE-2015-8138 - NTP

CVE-2015-8139 - NTP

CVE-2015-8140 - NTP

CVE-2015-8158 - NTP

CVE-2016-0701​ - OpenSSL

12 April 2016

14 June 2016

BSA-2016-004

CVE-2004-2761 - MD5 Message-Digest Algorithm

CVE-2008-1483 - OpenSSH

CVE-2014-2532 - OpenSSH

CVE-2014-4877 - GNU Wget

CVE-2015-3197 - OpenSSL

CVE-2015-4819 - MySQL

CVE-2015-4843 - Java

CVE-2015-4868 - Java

CVE-2015-4879 - MySQL

CVE-2015-5352 - OpenSSH

CVE-2015-7547 - glibc

CVE-2015-7701 - NTP

CVE-2015-7702 - NTP

CVE-2015-7703 - NTP

CVE-2015-7705 - NTP

CVE-2015-7848 - NTP

CVE-2015-7849 - NTP

CVE-2015-7850 - NTP

CVE-2015-7851 - NTP

CVE-2015-7852 - NTP

CVE-2015-7853 - NTP

CVE-2015-7854 - NTP

CVE-2015-7855 - NTP

CVE-2015-7871 - NTP

CVE-2015-7974 - NTP

CVE-2015-8710 - XML

CVE-2016-0483 - Java

CVE-2016-0603 - Java

CVE-2016-0702 - OpenSSL

CVE-2016-0703 - OpenSSL

CVE-2016-0704 - OpenSSL

CVE-2016-0705 - OpenSSL

CVE-2016-0728 - Linux Kernel

CVE-2016-0754 - cURL

CVE-2016-0755 - libcurl

CVE-2016-0797 - OpenSSL

CVE-2016-0798 - OpenSSL

CVE-2016-0799 - OpenSSL

CVE-2016-0800 - OpenSSL

CVE- NA: No CVE, but reference (VU#576313) - Apache and Java

18 March 2016

14 June 2016

BSA-2016-003

CVE-2015-7547

25 February 2016

25 February 2016

BSA-2016-002

CVE-2007-5944 - Web Server Expect Header XSS

CVE-2012-0053 - Apache HTTP

CVE-2013-5211 - NTP

CVE-2015-2053 - Log viewer in McAfee Agent (MA)

CVE-2015-2601 - Java

CVE-2015-2613 - Java

CVE-2015-4835 - Java

CVE-2015-5277 - Name Service Switch (NSS)

CVE-2015-7575 - TLS

CVE-2015-7645 - Adobe Flash Player

CVE-2015-8103 - CLI/Java

CVE-2016-0777 - OpenSSH

CVE-2016-0778 - OpenSSH

10 February 2016

14 June 2016

BSA-2016-001

CVE-2015-0459

CVE-2015-1283

CVE-2015-1798

CVE-2015-1799

CVE-2015-2625

CVE-2015-2890

CVE-2015-3331

CVE-2015-3414

CVE-2015-3415

CVE-2015-3416

CVE-2015-4458

CVE-2015-5146

CVE-2015-5600

CVE-2015-6563

CVE-2015-6564

15 January 2016

14 June 2016

BSA-2015-009

CVE-2015-0460 - Java

CVE-2015-0469 - Java

CVE-2015-0492 - Java

CVE-2015-1793 - OpenSSL

CVE-2015-3113 - Adobe Flash Player

CVE-2015-4620 - OpenSSL

CVE-2015-6565 - OpenSSH

9 November 2015

9 November 2015

BSA-2015-008

CVE-2014-3505 - OpenSSL

CVE-2014-3506 - OpenSSL

CVE-2014-3507 - OpenSSL

CVE-2014-3508 - OpenSSL

CVE-2014-3509 - OpenSSL

CVE-2014-3510 - OpenSSL

CVE-2014-3511 - OpenSSL

CVE-2014-3512 - OpenSSL

CVE-2014-3513 - OpenSSL

CVE-2014-3567 - OpenSSL

CVE-2014-3568 - OpenSSL

CVE-2014-5139 - OpenSSL

8 October 2015
11 May 2016

BSA-2015-007

CVE-2013-2566 - RC4 Algorithm

 

CVE-2015-0228 - Apache HTTP

 

CVE-2015-2808 - RC4 Algorithm

 

CVE-2015-3183 - Apache HTTP

 

CVE-2015-3185 - Apache HTTP

 

9 September 2015

11 May 2016

BSA-2015-006

CVE-2014-8176 - OpenSSL

CVE-2015-1788 - OpenSSL

CVE-2015-1789 - OpenSSL

CVE-2015-1790 - OpenSSL

CVE-2015-1791 - OpenSSL

CVE-2015-1792 - OpenSSL

8 July 2015

11 May 2016

BSA-2015-005

CVE-2015-4000 - TLS Protocol

17 June 2015

11 May 2016

BSA-2015-004

CVE-2015-0207 - OpenSSL

CVE-2015-0208 - OpenSSL

CVE-2015-0209 - OpenSSL

CVE-2015-0285 - OpenSSL

CVE-2015-0286 - OpenSSL

CVE-2015-0287 - OpenSSL

CVE-2015-0288 - OpenSSL

CVE-2015-0289 - OpenSSL

CVE-2015-0290 - OpenSSL

CVE-2015-0291 - OpenSSL

CVE-2015-0292 - OpenSSL

CVE-2015-0293 - OpenSSL

CVE-2015-1787 - OpenSSL

13 May 2015

11 May 2016

BSA-2015-003

CVE-2014-3569 - OpenSSL

CVE-2014-3570 - OpenSSL

CVE-2014-3571 - OpenSSL

CVE-2014-3572 - OpenSSL

CVE-2014-8275 - OpenSSL

CVE-2015-0204 - OpenSSL

CVE-2015-0205 - OpenSSL

CVE-2015-0206 - OpenSSL

24 April 2015

11 May 2016

BSA-2015-002

CVE-2014-9296 - NTP

19 March 2015

11 May 2016

BSA-2015-001

GNU C Library “GHOST” Vulnerability (CVE-2015-0235) Assessment for Brocade

13 February 2015

13 February 2015

BSA-2014-002

CVE-2014-3566 - OpenSSL

10 March 2015

11 May 2016

BSA-2014-001

Bash Environment Variable Injection Vulnerability

26 May 2015

26 May 2015

TSB 2014-197-A

Brocade Vyatta 5400 vRouter Low Risk Vulnerabilities

26 September 2014

26 September 2014