Vulnerabilities > Broadcom > Sannav > 2.2.0.0

DATE CVE VULNERABILITY TITLE RISK
2022-06-27 CVE-2022-28166 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.2.0.0
In Brocade SANnav version before SANN2.2.0.2 and Brocade SANNav before 2.1.1.8, the implementation of TLS/SSL Server Supports the Use of Static Key Ciphers (ssl-static-key-ciphers) on ports 443 & 18082.
network
low complexity
broadcom CWE-327
7.5
7.5
2022-06-27 CVE-2022-28167 Insufficiently Protected Credentials vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.2.0.0
Brocade SANnav before Brocade SANvav v.
network
low complexity
broadcom CWE-522
6.5
6.5
2022-06-27 CVE-2022-28168 Insecure Storage of Sensitive Information vulnerability in Broadcom Sannav 2.1.0/2.1.1/2.2.0.0
In Brocade SANnav before Brocade SANnav v2.2.0.2 and Brocade SANnav2.1.1.8, encoded scp-server passwords are stored using Base64 encoding, which could allow an attacker able to access log files to easily decode the passwords.
network
low complexity
broadcom CWE-922
7.5
7.5