Lucene search

[email protected]NVD:CVE-2024-29952

HistoryApr 17, 2024 - 10:15 p.m.

CVE-2024-29952

2024-04-1722:15:08

CWE-312

[email protected]

web.nvd.nist.gov

brocade

sannav

vulnerability

printing

passwords

unencrypted

logs

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

Percentile

9.0%

JSON

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to print the Auth, Priv, and SSL key store passwords in unencrypted logs by manipulating command variables.

References

support.broadcom.com/external/content/SecurityAdvisories/0/23238

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-29952

cve1 cvelist1 broadcom1 vulnrichment1