Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded TLS keys used by Docker.
** **Brocade SANnav doesn’t have access to remote Docker registries, and knowledge of the keys is a minimal risk as SANnav is prevented from communicating with Docker registries
VEX code: Inline_mitigations_already_exist
Vendor | Product | Version | CPE |
---|---|---|---|
broadcom | brocade_sannav | * | cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:* |