CVE-2023-31423

CVSS V2 None CVSS V3 None

Description

Possible information exposure through log file vulnerability where sensitive fields are recorded in the configuration log without masking on Brocade SANnav before v2.3.0 and 2.2.2a. Notes: To access the logs, the local attacker must have access to an already collected Brocade SANnav "supportsave" outputs.

Overview

CVE ID
CVE-2023-31423

Assigner
brocade

Vulnerability Status
PUBLISHED

Published Version
2023-08-31T00:43:39.805Z

Last Modified Date
2023-08-31T00:43:39.805Z

Weakness Enumerations

CWE	URL
CWE-312	http://cwe.mitre.org/data/definitions/312.html

References

Reference URL	Reference Tags
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/22508
https://security.netapp.com/advisory/ntap-20240229-0003/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-31423
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31423

History

Created	Old Value	New Value	Data Type	Notes
2024-06-24 21:34:20				Added to TrackCVE