Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-29962

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary.

Published

2024-04-19T05:15:48.940

Last Modified

2025-02-04T15:48:07.963

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-276
Type: Primary
CWE-276

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	broadcom	brocade_sannav	< 2.3.0a	Yes

References

https://support.broadcom.com/external/content/SecurityAdvisories/0/23248 Vendor Advisory ([email protected])
https://support.broadcom.com/external/content/SecurityAdvisories/0/23248 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)