← back
CVE-2024-29952

Clear text storage of sensistive information by manipulating command variables

CVSS 5.5 MEDIUMEPSS 0.1%CWE-312
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to print the Auth, Priv, and SSL key store passwords in unencrypted logs by manipulating command variables.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected products
Brocade · Brocade SANnav

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.broadcom.com/external/content/SecurityAdvisories/0/23238