Vulnerabilities > Broadcom > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-27 | CVE-2022-28167 | Insufficiently Protected Credentials vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.2.0.0 Brocade SANnav before Brocade SANvav v. | 6.5 |
| 2022-06-24 | CVE-2021-30651 | Unspecified vulnerability in Broadcom Symantec Messaging Gateway 10.7/10.7.4 A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access. | 4.9 |
| 2022-06-16 | CVE-2022-33755 | Unspecified vulnerability in Broadcom CA Automic Automation 12.2/12.3 CA Automic Automation 12.2 and 12.3 contain an insecure input handling vulnerability in the Automic Agent that could allow a remote attacker to potentially enumerate users. | 5.3 |
| 2022-05-06 | CVE-2022-28164 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.1.1.8 Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. | 6.5 |
| 2022-03-28 | CVE-2005-10001 | Open Redirect vulnerability in Broadcom Symantec Siteminder 4.5.0/4.5.1 A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. | 6.1 |
| 2022-03-26 | CVE-2022-27939 | Reachable Assertion vulnerability in multiple products tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. | 5.5 |
| 2022-03-22 | CVE-2022-25484 | Reachable Assertion vulnerability in Broadcom Tcpreplay 4.4.1 tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1. | 5.5 |
| 2022-03-18 | CVE-2020-15388 | Unspecified vulnerability in Broadcom Fabric Operating System A vulnerability in the Brocade Fabric OS before Brocade Fabric OS v9.0.1a, v8.2.3, v8.2.0_CBN4, and v7.4.2h could allow an authenticated CLI user to abuse the history command to write arbitrary content to files. | 6.5 |
| 2022-03-18 | CVE-2021-27789 | Unspecified vulnerability in Broadcom Fabric Operating System The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. | 6.5 |
| 2022-02-21 | CVE-2021-27796 | Unspecified vulnerability in Broadcom Fabric Operating System A vulnerability in Brocade Fabric OS versions before Brocade Fabric OS v8.0.1b, v7.4.1d could allow an authenticated attacker within the restricted shell environment (rbash) as either the “user” or “factory” account, to read the contents of any file on the filesystem utilizing one of a few available binaries. | 6.5 |