CPE – Broadcom SANnav 2.1.1

CPE Details

Broadcom SANnav 2.1.1

Vendor

broadcom

Product

sannav

Version

2.1.1

Created

2021-07-13
11h19 +00:00

Modifié

2021-07-15
14h04 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:broadcom:sannav:2.1.1:::::::*

Informations

Vendor

broadcom

Product

sannav

Version

2.1.1

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2022-28168	2022-06-27 15h52 +00:00	In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server passwords are stored using Base64 encoding, which could allow an attacker able to access log files to easily decode the passwords.	7.5	Haute
CVE-2022-28167	2022-06-27 15h51 +00:00	Brocade SANnav before Brocade SANvav v. 2.2.0.2 and Brocade SANanv v.2.1.1.8 logs the Brocade Fabric OS switch password in plain text in asyncjobscheduler-manager.log	6.5	Moyen
CVE-2022-28166	2022-06-27 15h51 +00:00	In Brocade SANnav version before SANN2.2.0.2 and Brocade SANNav before 2.1.1.8, the implementation of TLS/SSL Server Supports the Use of Static Key Ciphers (ssl-static-key-ciphers) on ports 443 & 18082.	7.5	Haute
CVE-2022-28162	2022-05-09 14h31 +00:00	Brocade SANnav before version SANnav 2.2.0 logs the REST API Authentication token in plain text.	3.3	Bas
CVE-2022-28165	2022-05-06 14h08 +00:00	A vulnerability in the role-based access control (RBAC) functionality of the Brocade SANNav before 2.2.0 could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to perform. The vulnerability exists because restrictions are not performed on Server side to ensure the user has required permission before processing requests.	8.8	Haute
CVE-2022-28163	2022-05-06 14h01 +00:00	In Brocade SANnav before Brocade SANnav 2.2.0, multiple endpoints associated with Zone management are susceptible to SQL injection, allowing an attacker to run arbitrary SQL commands.	9.8	Critique
CVE-2022-28164	2022-05-06 14h01 +00:00	Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. This could allow an authenticated attacker to decrypt stored account passwords.	6.5	Moyen

Broadcom SANnav 2.1.1

CPE Details

CPE Name: cpe:2.3:a:broadcom:sannav:2.1.1:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:broadcom:sannav:2.1.1:::::::*