Network Configuration Vulnerability in Brocade SANnav by Broadcom
CVE-2020-15378

5.3MEDIUM

Key Information:

Vendor: Broadcom
Status: Brocade Sannav
Vendor: CVE Published:; 9 June 2021

What is CVE-2020-15378?

The OVA version of Brocade SANnav prior to version 2.1.1 with IPv6 networking configuration inadvertently exposes Docker container ports to the broader network. This misconfiguration can significantly increase the potential attack surface, creating opportunities for unauthorized access and exploitation by malicious actors. It is essential for organizations using Brocade SANnav to update their software to the latest version to mitigate this risk.

Affected Version(s)

Brocade SANnav Brocade SANnav before version 2.1.1

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2021
Vulnerability Reserved
Jun 29, 2020