Improper Authentication in Brocade SANnav Affects Cleartext Credential Transmission
CVE-2020-15381

7.5HIGH

Key Information:

Vendor: Broadcom
Status: Brocade Sannav
Vendor: CVE Published:; 9 June 2021

Summary

Brocade SANnav versions prior to 2.1.1 are susceptible to an improper authentication vulnerability. This issue facilitates the cleartext transmission of authentication credentials used by the jmx server, potentially exposing sensitive information during communication. It highlights the importance of securing authentication mechanisms to protect against unauthorized access and data breaches. Users of affected versions are strongly encouraged to update to the latest version to mitigate this security risk.

Affected Version(s)

Brocade SANnav Brocade SANnav before version 2.1.1

References

https://www.broadcom.com/support/fibre-channel-networking...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 9, 2021
Vulnerability Reserved
Jun 29, 2020