Vulnerabilities > Broadcom
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-17 | CVE-2024-29952 | Cleartext Storage of Sensitive Information vulnerability in Broadcom Brocade Sannav A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to print the Auth, Priv, and SSL key store passwords in unencrypted logs by manipulating command variables. | 5.5 |
| 2024-04-17 | CVE-2024-29955 | Information Exposure Through Log Files vulnerability in Broadcom Brocade Sannav A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow a privileged user to print the SANnav encrypted key in PostgreSQL startup logs. | 5.5 |
| 2024-04-17 | CVE-2024-29951 | Inadequate Encryption Strength vulnerability in Broadcom Brocade Sannav Brocade SANnav before v2.3.1 and v2.3.0a uses the SHA-1 hash in internal SSH ports that are not open to remote connection. | 5.7 |
| 2024-04-17 | CVE-2024-29950 | Inadequate Encryption Strength vulnerability in Broadcom Brocade Sannav The class FileTransfer implemented in Brocade SANnav before v2.3.1, v2.3.0a, uses the ssh-rsa signature scheme, which has a SHA-1 hash. The vulnerability could allow a remote, unauthenticated attacker to perform a man-in-the-middle attack. | 5.9 |
| 2024-04-05 | CVE-2023-5973 | Origin Validation Error vulnerability in Broadcom Fabric Operating System Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent the portName to the user if the portName contains reserved characters. | 4.3 |
| 2024-04-04 | CVE-2023-3454 | OS Command Injection vulnerability in Broadcom Fabric Operating System Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch. | 9.8 |
| 2024-01-26 | CVE-2024-23613 | Classic Buffer Overflow vulnerability in Broadcom Symantec Deployment Solutions 7.9 A buffer overflow vulnerability exists in Symantec Deployment Solution version 7.9 when parsing UpdateComputer tokens. | 9.8 |
| 2024-01-26 | CVE-2024-23614 | Classic Buffer Overflow vulnerability in Broadcom Symantec Messaging Gateway 9.5 A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 9.5 and before. | 9.8 |
| 2024-01-26 | CVE-2024-23615 | Classic Buffer Overflow vulnerability in Broadcom Symantec Messaging Gateway 10.5/9.5 A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. | 9.8 |
| 2024-01-26 | CVE-2024-23616 | Classic Buffer Overflow vulnerability in Broadcom Symantec Server Management Suite 7.9 A buffer overflow vulnerability exists in Symantec Server Management Suite version 7.9 and before. | 9.8 |