CVE-2024-29963

CVSS v3.1

3.8

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Brocade SANnav versions prior to 2.3.1 Brocade SANnav version 2.3.0a

Description The issue is related to the use of hardcoded credentials in the software. An attacker could exploit this to gain unauthorized access to protected information. The software does not have access to remote Docker registries.

Recommendations For Brocade SANnav versions prior to 2.3.1, update to version 2.3.1 or later. For Brocade SANnav version 2.3.0a, update to version 2.3.1 or later. As a temporary workaround, consider restricting access to the Docker environment to minimize the risk of exploitation.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

BDU:2024-03783

CVE-2024-29963

Affected Products

Brocade Sannav

CVE-2024-29963

Weakness Enumeration

Related Identifiers

Affected Products

References · 10