Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
sannav vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-15384
Brocade SANNav before version 2.1.1 contains an information disclosure vulnerability. Successful exploitation of internal server information in the initial login response header....
Broadcom Sannav
8.8
CVSSv3
CVE-2022-28165
A vulnerability in the role-based access control (RBAC) functionality of the Brocade SANNav before 2.2.0 could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to perform. The...
Broadcom Sannav
5.3
CVSSv3
CVE-2020-15378
The OVA version of Brocade SANnav before version 2.1.1 installation with IPv6 networking exposes the docker container ports to the network, increasing the potential attack surface....
Broadcom Sannav
9.8
CVSSv3
CVE-2020-15377
Webtools in Brocade SANnav before version 2.1.1 allows unauthenticated users to make requests to arbitrary hosts due to a misconfiguration; this is commonly referred to as Server-Side Request Forgery (SSRF)....
Broadcom Sannav
6.5
CVSSv3
CVE-2022-28164
Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. This could allow an authenticated attacker to decrypt stored account passwords....
Broadcom Sannav
7.2
CVSSv3
CVE-2020-15382
Brocade SANnav before version 2.1.1 uses a hard-coded administrator account with the weak password ‘passw0rd’ if a password is not provided for PostgreSQL at install-time....
Broadcom Brocade Sannav
1 Github repository available
7.5
CVSSv3
CVE-2019-16208
Password-based encryption (PBE) algorithm, of Brocade SANnav versions before v2.0, has a weakness in generating cryptographic keys that may allow an attacker to decrypt passwords used with several services (Radius, TACAS, etc.)....
Broadcom Brocade Sannav
5.5
CVSSv3
CVE-2019-16210
Brocade SANnav versions before v2.0, logs plain text database connection password while triggering support save....
Broadcom Brocade Sannav
5.4
CVSSv3
CVE-2020-15385
Brocade SANnav before version 2.1.1 allows an authenticated attacker to list directories, and list files without permission. As a result, users without permission can see folders, and hidden files, and can create directories without permission....
Broadcom Sannav
7.5
CVSSv3
CVE-2020-15380
Brocade SANnav before version 2.1.1 logs account credentials at the ‘trace’ logging level....
Broadcom Sannav
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-29337
CVE-2021-32965
firmware
CVE-2022-1388
inject
authentication bypass
CVE-2022-22972
CVE-2022-29333
CVE-2021-45914
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »
Vulmon