Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
configuration secrets are logged in support-save
Vulnerability Description
An information exposure through log file vulnerability exists in Brocade SANnav before Brocade SANnav 2.2.2, where configuration secrets are logged in supportsave. Supportsave file is generated by an admin user troubleshooting the switch. The Logged information may include usernames and passwords, and secret keys.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
文件和路径信息暴露
Vulnerability Title
Broadcom SANnav 安全漏洞
Vulnerability Description
Broadcom SANnav是美国博通(Broadcom)公司的一套SAN管理平台。 Broadcom SANnav 2.2.2之前版本存在安全漏洞,该漏洞源于存在通过日志文件漏洞泄露信息的情况,其中配置机密记录在supportsave中。
CVSS Information
N/A
Vulnerability Type
N/A