exploitDog

GHSA-v6jg-w357-8m4v

Опубликовано: 26 июн. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d prints encoded session passwords on session storage for Virtual Fabric platforms. This could allow an authenticated user to view other users' session encoded passwords.

A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d prints encoded session passwords on session storage for Virtual Fabric platforms. This could allow an authenticated user to view other users' session encoded passwords.

Ссылки

EPSS

Процентиль: 58%

0.00366

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-922

Связанные уязвимости

CVE-2024-29953

CVSS3: 4.3

nvd

больше 1 года назад

A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d prints encoded session passwords on session storage for Virtual Fabric platforms. This could allow an authenticated user to view other users' session encoded passwords.

EPSS

Процентиль: 58%

0.00366

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-922