Server-Side Request Forgery in Brocade SANnav Vulnerability
CVE-2020-15377
9.8CRITICAL
What is CVE-2020-15377?
The Webtools component in Brocade SANnav, prior to version 2.1.1, is susceptible to a configuration flaw that permits unauthenticated users to initiate requests to arbitrary hosts. This type of vulnerability, known as Server-Side Request Forgery (SSRF), can lead to potential information exposure and other security risks, as malicious actors can exploit this to interact with unintended servers.
Affected Version(s)
Brocade SANnav Brocade SANnav before version 2.1.1