← back
CVE-2024-29958

Encryption key in the console when a privileged user executes the script to replace the Brocade SANnav Management Portal standby node.

CVSS 7.5 HIGHEPSS 0.3%CWE-532
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a prints the encryption key in the console when a privileged user executes the script to replace the Brocade SANnav Management Portal standby node. This could provide attackers an additional, less protected path to acquiring the encryption key.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
Brocade · Brocade SANnav

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.broadcom.com/external/content/SecurityAdvisories/0/23242