Severe Flaws Disclosed in Brocade SANnav SAN Management Software

April 26, 2024 at 11:12AM Several security vulnerabilities were disclosed in the Brocade SANnav storage area network (SAN) management application, impacting all versions up to and including 2.3.0. These flaws allowed attackers to intercept credentials, execute arbitrary commands, and carry out supply chain attacks. The issues have been addressed in SANnav version 2.3.1 and patches … Read more

Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking

April 25, 2024 at 08:15AM Pierre Barre warned of multiple vulnerabilities in the Brocade SANnav application, allowing for compromise of the appliance and Fibre Channel switches. The flaws included unauthenticated access, backdoor accounts, exposed credentials, and insecure Docker instances. After initial rejection, the issues were patched in SANnav version 2.3.1, released in December 2023. Key … Read more