Directory Listing Vulnerability in Brocade SANnav by Broadcom
CVE-2020-15385
5.4MEDIUM
Summary
The vulnerability in Brocade SANnav prior to version 2.1.1 allows an authenticated attacker to access directories and files that they do not have permission to view. This flaw permits users to enumerate sensitive folders and hidden files, as well as create new directories without authorization, which poses significant risks for data confidentiality and integrity.
Affected Version(s)
Brocade SANnav Brocade SANnav before version 2.1.1
References
CVSS V3.1
Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved