CVE-2024-2859

Name of the Vulnerable Software and Affected Versions Brocade SANnav versions (affected versions not specified)

Description The issue is related to inadequate access control in the software, which could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. By default, SANnav OVA is shipped with the root user login enabled, although it is protected by a password. If an attacker gains access to the root account, they could expose SANnav to remote attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.