Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL Table names, column names, and SQL queries are collected in DR standby Supportsave
Vulnerability Description
An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. SQL Table names, column names, and SQL queries are collected in DR standby Supportsave. This could allow authenticated users to access the database structure and its contents.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
敏感信息的不安全存储
Vulnerability Title
Broadcom Brocade SANnav 安全漏洞
Vulnerability Description
Broadcom Brocade SANnav是美国博通(Broadcom)公司的一套SAN管理平台。 Brocade SANnav v2.3.1 版本和 v2.3.0a 版本存在安全漏洞,该漏洞源于当Brocade SANnav实例配置为灾难恢复模式时,Brocade SANnav中存在信息泄露漏洞。这可以允许经过身份验证的用户访问数据库结构及其内容。
CVSS Information
N/A
Vulnerability Type
N/A