In Brocade SANnav before Brocade SANnav 2.2.0, multiple endpoints associated with Zone management are susceptible to SQL injection, allowing an attacker to run arbitrary SQL commands.
References
Configurations
History
21 Nov 2024, 06:56
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1842 - Vendor Advisory |
Information
Published : 2022-05-06 16:15
Updated : 2024-11-21 06:56
NVD link : CVE-2022-28163
Mitre link : CVE-2022-28163
CVE.ORG link : CVE-2022-28163
JSON object : View
Products Affected
broadcom
- sannav
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')