GCVE - cpe:2.3:a:brocade:network_advisor:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:brocade:network_advisor:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Brocade (`6fdec8a1-a3f9-5249-a7b8-f2ff93df10fc`)
Product	Network Advisor (`e22e65eb-95fc-5628-9361-9aa368863b83`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-6445`	vulnerable	2026-06-03 14:39:00.265633	Details available A Vulnerability in Brocade Network Advisor versions before 14.0.3 could allow a remote unauthenticated attacker to export the current user database which includes the encrypted (not hashed) password of the systems. The attacker could gain access to the Brocade Network Advisor System after extracting/decrypting the passwords. Published: 2019-01-22T17:00:00.000Z Updated: 2024-08-05T06:01:49.281Z Open on db.gcve.eu Reference links https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-745 https://security.netapp.com/advisory/ntap-20190411-0005/ https://support.lenovo.com/us/en/product_security/LEN-25655	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-6444`	vulnerable	2026-06-03 14:39:00.265272	Details available A Vulnerability in Brocade Network Advisor versions before 14.1.0 could allow a remote unauthenticated attacker to execute arbitray code. The vulnerability could also be exploited to execute arbitrary OS Commands. Published: 2019-01-22T17:00:00.000Z Updated: 2024-08-05T06:01:49.247Z Open on db.gcve.eu Reference links https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-744 https://security.netapp.com/advisory/ntap-20190411-0005/ https://support.lenovo.com/us/en/product_security/LEN-25655	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-6443`	vulnerable	2026-06-03 14:39:00.264318	Details available A vulnerability in Brocade Network Advisor Versions before 14.3.1 could allow an unauthenticated, remote attacker to log in to the JBoss Administration interface of an affected system using an undocumented user credentials and install additional JEE applications. A remote unauthenticated user who has access to Network Advisor client libraries and able to decrypt the Jboss credentials could gain access to the Jboss web console. Published: 2019-01-22T17:00:00.000Z Updated: 2024-08-05T06:01:49.272Z Open on db.gcve.eu Reference links https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2018-743 https://security.netapp.com/advisory/ntap-20190411-0005/ http://packetstormsecurity.com/files/153035/Brocade-Network-Advisor-14.4.1-Unauthenticated-Remote-Code-Execution.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-8207`	vulnerable	2026-06-03 14:36:08.940627	Details available A Directory Traversal vulnerability in CliMonitorReportServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files including files with sensitive user information. Published: 2017-01-14T19:00:00.000Z Updated: 2024-08-06T02:13:21.815Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/95691 http://www.zerodayinitiative.com/advisories/ZDI-17-052 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-180	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-8206`	vulnerable	2026-06-03 14:36:08.940283	Details available A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary files, and consequently delete the files. Published: 2017-01-14T19:00:00.000Z Updated: 2024-08-06T02:13:21.851Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/95692 http://www.zerodayinitiative.com/advisories/ZDI-17-051 https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-8205`	vulnerable	2026-06-03 14:36:08.939851	Details available A Directory Traversal vulnerability in DashboardFileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious file in a section of the file system where it can be executed. Published: 2017-01-14T19:00:00.000Z Updated: 2024-08-06T02:13:21.873Z Open on db.gcve.eu Reference links http://www.zerodayinitiative.com/advisories/ZDI-17-050 https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-178 http://www.securityfocus.com/bid/95694 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.