← back
CVE-2023-31423

Possible information exposure through log file vulnerability

CVSS 5.7 MEDIUMEPSS 0.2%CWE-312
Possible information exposure through log file vulnerability where sensitive fields are recorded in the configuration log without masking on Brocade SANnav before v2.3.0 and 2.2.2a. Notes: To access the logs, the local attacker must have access to an already collected Brocade SANnav "supportsave" outputs.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
Affected products
Brocade · SANnav

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.netapp.com/advisory/ntap-20240229-0003/https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22508