Broadcom Brocade SANnav CVE-2019-16207 Hardcoded Credentials Vulnerability

2019-10-28T00:00:00
ID SMNTC-110906
Type symantec
Reporter Symantec Security Response
Modified 2019-10-28T00:00:00

Description

Description

Broadcom Brocade SANnav is prone to a hard-coded credentials vulnerability. An attacker can exploit this issue to gain unauthorized access to the vulnerable system and perform unauthorized actions. Versions prior to Brocade SANnav 2.0 are vulnerable.

Technologies Affected

  • Broadcom Brocade SANnav

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Permit local interactive access to known and trusted individuals only. Use of restricted environments such as chroot and jail may also limit exposure to this and other latent vulnerabilities.

Updates are available. Please see the references or vendor advisory for more information.