← back
CVE-2024-29964

Brocade SANnav versions before v2.3.0a do not correctly set permissions on files, including docker files

CVSS 5.7 MEDIUMEPSS 0.5%CWE-732
Brocade SANnav versions before v2.3.0a do not correctly set permissions on files, including docker files. An unprivileged attacker who gains access to the server can read sensitive information from these files.
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected products
Brocade · Brocade SANnav

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.broadcom.com/external/content/SecurityAdvisories/0/23249