Weakness in Password-Based Encryption Algorithm in Brocade SANnav Versions before v2.0

Weakness in Password-Based Encryption Algorithm in Brocade SANnav Versions before v2.0

CVE-2019-16208 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Password-based encryption (PBE) algorithm, of Brocade SANnav versions before v2.0, has a weakness in generating cryptographic keys that may allow an attacker to decrypt passwords used with several services (Radius, TACAS, etc.).

Learn more about our Web Application Penetration Testing UK.