2 matches found
HPESBST04282 rev.1 - HPE B-Series SANnav Management Portal, Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Code Execution, Disclosure of Sensitive Information, SQL Injection, Unauthorized Access to Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SANnav Management Software 2.1.1x, 2.1.0x, 2.0.0 CVSS Scores: | CVE | CVSS Vector...
Session fixation
A vulnerability, in Brocade SANnav versions before v2.0, could allow remote attackers to brute-force a valid session ID. The vulnerability is due to an insufficiently random session ID for several post-authentication actions in the SANnav portal...