CVE-2024-29952

Clear text storage of sensistive information by manipulating command variables

CVSS 5.5 MEDIUMEPSS 0.1%CWE-312

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to print the Auth, Priv, and SSL key store passwords in unencrypted logs by manipulating command variables.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Produtos afetados

Brocade · Brocade SANnav

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://support.broadcom.com/external/content/SecurityAdvisories/0/23238