SQL Injection Vulnerability in Brocade SANnav Zone Management

SQL Injection Vulnerability in Brocade SANnav Zone Management

CVE-2022-28163 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In Brocade SANnav before Brocade SANnav 2.2.0, multiple endpoints associated with Zone management are susceptible to SQL injection, allowing an attacker to run arbitrary SQL commands.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.