VYPR
Unrated severityNVD Advisory· Published Nov 21, 2024· Updated Nov 21, 2024

SFTP/FTP password could be captured in plain text in Supportsave generated from SANnav

CVE-2024-10403

Description

Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Brocade/Fabric OSllm-fuzzy2 versions
    <8.2.3e2, 9.0.0-9.2.0c, 9.2.1-9.2.1a+ 1 more
    • (no CPE)range: <8.2.3e2, 9.0.0-9.2.0c, 9.2.1-9.2.1a
    • (no CPE)range: Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.