CVE-2019-16206
First published: Fri Nov 08 2019(Updated: )
The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account credentials at the ‘trace’ and the 'debug' logging level; which could allow a local authenticated attacker to access sensitive information.
Credit: sirt@brocade.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom Brocade Sannav | <2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-16206.
What is the title of this vulnerability?
The title of this vulnerability is 'The authentication mechanism in Brocade SANnav versions before v2.0 logs plaintext account credentials'.
What is the severity of CVE-2019-16206?
The severity of CVE-2019-16206 is medium with a severity value of 5.5.
How does CVE-2019-16206 affect Brocade SANnav?
CVE-2019-16206 affects Brocade SANnav versions before v2.0.
How can a local authenticated attacker exploit CVE-2019-16206?
A local authenticated attacker can exploit CVE-2019-16206 by accessing sensitive information through the plaintext account credentials logged at the 'trace' and 'debug' logging level.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/type
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/broadcom
- canonical/broadcom brocade sannav