Lucene search
K

279 matches found

OSV
OSV
added 2024/04/19 6:15 a.m.3 views

CVE-2024-29968

An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. SQL Table names, column names, and SQL queries are collected in DR standby Supportsave. This could allow authenticated users to access...

6.5CVSS5.8AI score0.00463EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/19 5:17 a.m.29 views

CVE-2024-29968 SQL Table names, column names, and SQL queries are collected in DR standby Supportsave

An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. SQL Table names, column names, and SQL queries are collected in DR standby Supportsave. This could allow authenticated users to access...

7.7CVSS7.5AI score0.00463EPSS
Exploits0References1
OSV
OSV
added 2024/04/19 4:15 a.m.4 views

CVE-2024-29957

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key...

7.5CVSS5.8AI score0.00301EPSS
Exploits0References1
NVD
NVD
added 2024/04/19 4:15 a.m.21 views

CVE-2024-29957

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key...

7.5CVSS7.4AI score0.00301EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/19 3:11 a.m.26 views

CVE-2024-29957 Encryption key is stored in the DR log files

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key...

7.5CVSS7.6AI score0.00301EPSS
Exploits0References1
CVE
CVE
added 2024/04/19 3:11 a.m.69 views

CVE-2024-29957

CVE-2024-29957 affects Brocade SANnav prior to v2.3.1 and v2.3.0a when in Disaster Recovery mode, where the encryption key is stored in DR log files. This exposes a risk that an attacker could obtain the encryption key via read access to DR logs. The issue is tied to SANnav software on Brocade de...

7.5CVSS6.4AI score0.00301EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/19 3:11 a.m.16 views

CVE-2024-29957 Encryption key is stored in the DR log files

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key...

7.5CVSS6.6AI score0.00301EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/19 12:0 a.m.3 views

Broadcom Brocade SANnav 安全漏洞

Broadcom Brocade SANnav is a suite of SAN management platforms from Broadcom USA. A security vulnerability exists in Brocade SANnav versions v2.3.1 and v2.3.0a that stems from an information disclosure vulnerability in Brocade SANnav when the Brocade SANnav instance is configured in disaster...

7.7CVSS8.7AI score0.00463EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/19 12:0 a.m.6 views

Broadcom Brocade SANnav 日志信息泄露漏洞

Broadcom Brocade SANnav is a suite of SAN management platforms from Broadcom USA. A security vulnerability exists in Brocade SANnav versions v2.3.1 and v2.3.0a, which stems from an encryption key being stored in the DR log file when the server is configured in disaster recovery mode. This could...

7.5CVSS9.1AI score0.00301EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.4 views

PT-2024-3187 · Brocade · Brocade Sannav

Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.3.1 Brocade SANnav version 2.3.0a Description: The issue is related to the storage of the encryption key in the DR log files when the server is configured in Disaster Recovery mode. This could provide...

7.8CVSS7AI score0.00301EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.3 views

PT-2024-4305 · Brocade · Brocade Sannav

Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.3.1 Brocade SANnav version 2.3.0a Description: An information disclosure issue exists in Brocade SANnav when instances are configured in disaster recovery mode, allowing authenticated users to access the...

7.7CVSS7.3AI score0.00463EPSS
Exploits0References8
Broadcom
Broadcom
added 2024/04/17 12:0 a.m.24 views

The encryption key is stored in the DR log files (CVE-2024-29957).

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.Products Affected...

7.5CVSS6.4AI score0.00301EPSS
Exploits0
Broadcom
Broadcom
added 2024/04/17 12:0 a.m.22 views

SQL Table names, column names, and SQL queries are collected in DR standby Supportsave (CVE-2024-29968)

An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. SQL Table names, column names, and SQL queries are collected in DR standby Supportsave. This could allow authenticated users to access...

7.7CVSS6.7AI score0.00463EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2024/02/22 12:0 a.m.21 views

Dell RecoverPoint for Virtual Machines Brute Force Vulnerability

Dell RecoverPoint for Virtual Machines is a disaster recovery solution for VMware environments from Dell. A brute force vulnerability exists in Dell RecoverPoint for Virtual Machines, which can be exploited by an attacker to brute-force break a valid user's password in an automated fashion...

9.8CVSS6.9AI score0.00458EPSS
Exploits0References1
CNVD
CNVD
added 2024/02/22 12:0 a.m.15 views

Dell RecoverPoint for Virtual Machines Code Issue Vulnerability

Dell RecoverPoint for VMs is a disaster recovery solution for VMware environments from Dell, Inc. A code issue vulnerability exists in Dell RecoverPoint for Virtual Machines version 5.3.x, which stems from the inclusion of an operating system command injection vulnerability. No details of the...

9.8CVSS7.5AI score0.01403EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/02/22 12:0 a.m.20 views

Fedora: Security Advisory for rear (FEDORA-2024-49ddbf447d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.7AI score0.00291EPSS
Exploits1References2
Fedora
Fedora
added 2024/02/21 1:39 a.m.28 views

[SECURITY] Fedora 38 Update: rear-2.7-8.fc38

Relax-and-Recover is the leading Open Source disaster recovery and system migration solution. It comprises of a modular frame-work and ready-to-go workflows for many common situations to produce a bootable image and restore from backup using this image. As a benefit, it allows to restore to...

5.5CVSS5.5AI score0.00291EPSS
Exploits1
Fedora
Fedora
added 2024/02/21 1:33 a.m.28 views

[SECURITY] Fedora 39 Update: rear-2.7-8.fc39

Relax-and-Recover is the leading Open Source disaster recovery and system migration solution. It comprises of a modular frame-work and ready-to-go workflows for many common situations to produce a bootable image and restore from backup using this image. As a benefit, it allows to restore to...

5.5CVSS5.5AI score0.00291EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/02/21 12:0 a.m.17 views

Fedora: Security Advisory (FEDORA-2024-a2f6e5ddb8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.7AI score0.00291EPSS
Exploits1References6
Debian
Debian
added 2024/02/03 6:1 p.m.36 views

[SECURITY] [DLA 3733-1] rear security update

Debian LTS Advisory DLA-3733-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA February 03, 2024 https://wiki.debian.org/LTS Package : rear Version : 2.4+dfsg-1+deb10u1 CVE ID : CVE-2024-23301 rear is a disaster recovery and system migration framework. It has been...

5.5CVSS6AI score0.00291EPSS
Exploits1
Rows per page
Query Builder