CVE-2020-15377

2021-06-0915:15:05

brocade

www.cve.org

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.5%

JSON

Webtools in Brocade SANnav before version 2.1.1 allows unauthenticated users to make requests to arbitrary hosts due to a misconfiguration; this is commonly referred to as Server-Side Request Forgery (SSRF).

CNA Affected

[
  {
    "product": "Brocade SANnav",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Brocade SANnav before version 2.1.1"
      }
    ]
  }
]