CVE-2023-31925
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Aug 31, 2023
Updated: Sep 5, 2023
CWE ID 312
Summary
CVE-2023-31925 is a vulnerability affecting Brocade SANnav before versions 2.3.0 and 2.2.2a. This issue allows privileged users to retrieve SNMPv3 Authentication passwords in plaintext from SANnav's log files. The passwords can be accessed if an SNMP configuration failure occurs and causes an SNMP communication log dump. The vulnerability poses a risk as SNMP credentials are stored unencrypted, potentially exposing network access to unauthorized individuals.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Broadcom