Vulnerabilities > Broadcom > Brocade Sannav > 1.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-21 | CVE-2022-43933 | Information Exposure Through Log Files vulnerability in Broadcom Brocade Sannav An information exposure through log file vulnerability exists in Brocade SANnav before Brocade SANnav 2.2.2, where configuration secrets are logged in supportsave. | 4.4 |
| 2024-11-21 | CVE-2022-43934 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Brocade Sannav Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered weak on ports 24, 6514, 18023, 19094, and 19095. | 7.5 |
| 2024-11-21 | CVE-2022-43935 | Information Exposure Through Log Files vulnerability in Broadcom Brocade Sannav An information exposure through log file vulnerability exists in Brocade SANnav before Brocade SANnav 2.2.2, where Brocade Fabric OS Switch passwords and authorization IDs are printed in the embedded MLS DB file. | 4.4 |
| 2024-11-21 | CVE-2022-43936 | Information Exposure Through Log Files vulnerability in Broadcom Brocade Sannav Brocade SANnav versions before 2.2.2 log Brocade Fabric OS switch passwords when debugging is enabled. | 4.9 |
| 2024-11-21 | CVE-2022-43937 | Information Exposure Through Log Files vulnerability in Broadcom Brocade Sannav Possible information exposure through log file vulnerability where sensitive fields are recorded in the debug-enabled logs when debugging is turned on in Brocade SANnav before 2.3.0 and 2.2.2a | 5.5 |
| 2024-05-08 | CVE-2024-2860 | Missing Authentication for Critical Function vulnerability in Broadcom Brocade Sannav The PostgreSQL implementation in Brocade SANnav versions before 2.3.0a is vulnerable to an incorrect local authentication flaw. | 7.8 |
| 2024-04-25 | CVE-2024-4173 | Unspecified vulnerability in Broadcom Brocade Sannav A vulnerability in Brocade SANnav exposes Kafka in the wan interface. The vulnerability could allow an unauthenticated attacker to perform various attacks, including DOS against the Brocade SANnav. | 9.8 |
| 2024-04-25 | CVE-2024-4159 | Unspecified vulnerability in Broadcom Brocade Sannav Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information. | 5.3 |
| 2024-04-25 | CVE-2024-4161 | Cleartext Transmission of Sensitive Information vulnerability in Broadcom Brocade Sannav In Brocade SANnav, before Brocade SANnav v2.3.0, syslog traffic received clear text. | 7.5 |
| 2024-04-19 | CVE-2024-29968 | Insecure Storage of Sensitive Information vulnerability in Broadcom Brocade Sannav An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. | 6.5 |