Vulnerabilities > CVE-2018-6445
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
A Vulnerability in Brocade Network Advisor versions before 14.0.3 could allow a remote unauthenticated attacker to export the current user database which includes the encrypted (not hashed) password of the systems. The attacker could gain access to the Brocade Network Advisor System after extracting/decrypting the passwords.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 | |
Application | 1 |
References
- https://security.netapp.com/advisory/ntap-20190411-0005/
- https://security.netapp.com/advisory/ntap-20190411-0005/
- https://support.lenovo.com/us/en/product_security/LEN-25655
- https://support.lenovo.com/us/en/product_security/LEN-25655
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-745
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-745