Blowfish Encryption Vulnerability in Brocade SANnav

Blowfish Encryption Vulnerability in Brocade SANnav

CVE-2022-28164 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. This could allow an authenticated attacker to decrypt stored account passwords.

Learn more about our Web Application Penetration Testing UK.