CVE-2023-31925

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 31, 2023
Updated: Sep 5, 2023
CWE ID 312

Summary

CVE-2023-31925 is a vulnerability affecting Brocade SANnav before versions 2.3.0 and 2.2.2a. This issue allows privileged users to retrieve SNMPv3 Authentication passwords in plaintext from SANnav's log files. The passwords can be accessed if an SNMP configuration failure occurs and causes an SNMP communication log dump. The vulnerability poses a risk as SNMP credentials are stored unencrypted, potentially exposing network access to unauthorized individuals.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share