Plaintext Password Storage Vulnerability in Brocade SANnav
CVE-2019-16211

9.8CRITICAL

Key Information:

Vendor: Broadcom
Status: Brocade Sannav
Vendor: CVE Published:; 25 September 2020

Summary

Brocade SANnav prior to version 2.1.0 is susceptible to a vulnerability that allows for storing passwords in plaintext. This practice poses significant security risks, as unauthorized users may gain access to sensitive information. It is crucial for users to upgrade to the latest version to mitigate these security concerns, ensuring that passwords are stored securely and enhancing overall data protection measures.

Affected Version(s)

Brocade SANnav Brocade SANnav versions before v2.1.0

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 25, 2020
Vulnerability Reserved
Sep 10, 2019