2.1.1.8

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

broadcom

NVD

Published: 2022-05-06

Updated: 2023-08-08

Summary

A vulnerability in the role-based access control (RBAC) functionality of the Brocade SANNav before 2.2.0 could allow an authenticated, remote attacker to access resources that they should not be able to access and perform actions that they should not be able to perform. The vulnerability exists because restrictions are not performed on Server side to ensure the user has required permission before processing requests.

Vulnerable Configurations

Part	Description	Count
Application	Broadcom Broadcom Sannav - Broadcom Sannav 2.1.0 Broadcom Sannav 2.1.1 Broadcom Sannav 2.1.1.8	4

References

https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1844