CVE-2024-29962

Name of the Vulnerable Software and Affected Versions Brocade SANnav OVA versions prior to 2.3.1 Brocade SANnav OVA version 2.3.0a

Description The issue is related to an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary.

Recommendations For Brocade SANnav OVA versions prior to 2.3.1, update to version 2.3.1 or later to resolve the issue. For Brocade SANnav OVA version 2.3.0a, update to version 2.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and Java binaries to minimize the risk of exploitation.