Sannav Security Vulnerabilities and Issues — Sannav CVE List

Lucene search

BroadcomSannav

4 matches found

CVE•added 2022/06/21 3:15 p.m.•1117 views

CVE-2022-2068

In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there ...

10CVSS9.2AI score0.7123EPSS

CVE•added 2022/06/27 6:15 p.m.•91 views

CVE-2022-28166

In Brocade SANnav version before SANN2.2.0.2 and Brocade SANNav before 2.1.1.8, the implementation of TLS/SSL Server Supports the Use of Static Key Ciphers (ssl-static-key-ciphers) on ports 443 & 18082.

7.5CVSS7.6AI score0.0014EPSS

CVE•added 2022/06/27 6:15 p.m.•60 views

CVE-2022-28168

In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server passwords are stored using Base64 encoding, which could allow an attacker able to access log files to easily decode the passwords.

7.5CVSS7.4AI score0.00299EPSS

CVE•added 2022/06/27 6:15 p.m.•52 views

CVE-2022-28167

Brocade SANnav before Brocade SANvav v. 2.2.0.2 and Brocade SANanv v.2.1.1.8 logs the Brocade Fabric OS switch password in plain text in asyncjobscheduler-manager.log

6.5CVSS6.6AI score0.00199EPSS