Webtools in Brocade SANnav before version 2.1.1 allows unauthenticated users to make requests to arbitrary hosts due to a misconfiguration; this is commonly referred to as Server-Side Request Forgery (SSRF).
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15377
Reference (s):
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1480
- URL: https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2021-1480