Lucene search
Broadcom Security ResponseBSNSA23247HistoryApr 17, 2024 - 12:00 a.m.
Hardcoded TLS keys used by Docker (CVE-2024-29963).
2024-04-1700:00:00
Broadcom Security Response
support.broadcom.com
6
brocade sannav
ova
docker
remote registries
tls
hardcoded keys
mitm
cve-2024-29963
Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded TLS keys used by Docker.
** **Brocade SANnav doesn’t have access to remote Docker registries, and knowledge of the keys is a minimal risk as SANnav is prevented from communicating with Docker registries
VEX code: Inline_mitigations_already_exist
Affected configurations
Node
broadcombrocade_sannavRange<2.3.0a
| Vendor | Product | Version | CPE |
|---|---|---|---|
| broadcom | brocade_sannav | * | cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2024-29963 Brocade SANnav contains hardcoded TLS keys used by Docker
2024-04-19 04:04:48
vulnrichment
vulnrichment
CVE-2024-29963 Brocade SANnav contains hardcoded TLS keys used by Docker
2024-04-19 04:04:48
nvd
nvd
CVE-2024-29963
2024-04-19 04:15:10
cve
cve
CVE-2024-29963
2024-04-19 04:15:10
thn
thn
Severe Flaws Disclosed in Brocade SANnav SAN Management Software
2024-04-26 14:03:00