cvelistv5 - cve-2024-29957

cve-2024-29957

Vulnerability from cvelistv5

Published

2024-04-19 03:11

Modified

2024-08-02 01:17

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.

References

▼	URL	Tags
	sirt@brocade.com	https://support.broadcom.com/external/content/SecurityAdvisories/0/23241	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.broadcom.com/external/content/SecurityAdvisories/0/23241	Vendor Advisory

Impacted products

	Vendor	Product	Version
	Brocade	Brocade SANnav	Version: before v2.3.1 and v2.3.0a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            affected: [
               {
                  cpes: [
                     "cpe:2.3:a:brocade:sannav:*:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "sannav",
                  vendor: "brocade",
                  versions: [
                     {
                        lessThan: "2.3.0a",
                        status: "affected",
                        version: "0",
                        versionType: "custom",
                     },
                  ],
               },
            ],
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-29957",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-04-19T18:28:36.735173Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-06-04T17:57:45.044Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T01:17:58.659Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "affected",
               product: "Brocade SANnav",
               vendor: "Brocade",
               versions: [
                  {
                     status: "affected",
                     version: "before v2.3.1 and v2.3.0a",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.<br>",
                  },
               ],
               value: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\n",
            },
         ],
         impacts: [
            {
               capecId: "CAPEC-37",
               descriptions: [
                  {
                     lang: "en",
                     value: "CAPEC-37 Retrieve Embedded Sensitive Data",
                  },
               ],
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-532",
                     description: "CWE-532: Insertion of Sensitive Information into Log File",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-04-19T03:11:25.892Z",
            orgId: "87b297d7-335e-4844-9551-11b97995a791",
            shortName: "brocade",
         },
         references: [
            {
               url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
            },
         ],
         source: {
            discovery: "UNKNOWN",
         },
         title: "Encryption key is stored in the DR log files",
         x_generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "87b297d7-335e-4844-9551-11b97995a791",
      assignerShortName: "brocade",
      cveId: "CVE-2024-29957",
      datePublished: "2024-04-19T03:11:25.892Z",
      dateReserved: "2024-03-22T05:18:44.193Z",
      dateUpdated: "2024-08-02T01:17:58.659Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2024-29957\",\"sourceIdentifier\":\"sirt@brocade.com\",\"published\":\"2024-04-19T04:15:09.390\",\"lastModified\":\"2025-02-04T15:57:57.087\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\\n\"},{\"lang\":\"es\",\"value\":\"Cuando los servidores Brocade SANnav anteriores a v2.3.1 y v2.3.0a están configurados en modo de recuperación de desastres, la clave de cifrado se almacena en los archivos de registro de recuperación ante desastres. Esto podría proporcionar a los atacantes una ruta adicional y menos protegida para adquirir la clave de cifrado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"sirt@brocade.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"sirt@brocade.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.3.0a\",\"matchCriteriaId\":\"303EE152-4CED-4655-B035-CB3B91E5E288\"}]}]}],\"references\":[{\"url\":\"https://support.broadcom.com/external/content/SecurityAdvisories/0/23241\",\"source\":\"sirt@brocade.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.broadcom.com/external/content/SecurityAdvisories/0/23241\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
      vulnrichment: {
         containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://support.broadcom.com/external/content/SecurityAdvisories/0/23241\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T01:17:58.659Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-29957\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-04-19T18:28:36.735173Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:brocade:sannav:*:*:*:*:*:*:*:*\"], \"vendor\": \"brocade\", \"product\": \"sannav\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.3.0a\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-04-19T18:28:26.042Z\"}}], \"cna\": {\"title\": \"Encryption key is stored in the DR log files\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-37\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-37 Retrieve Embedded Sensitive Data\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Brocade\", \"product\": \"Brocade SANnav\", \"versions\": [{\"status\": \"affected\", \"version\": \"before v2.3.1 and v2.3.0a\"}], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://support.broadcom.com/external/content/SecurityAdvisories/0/23241\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\\n\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.<br>\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532: Insertion of Sensitive Information into Log File\"}]}], \"providerMetadata\": {\"orgId\": \"87b297d7-335e-4844-9551-11b97995a791\", \"shortName\": \"brocade\", \"dateUpdated\": \"2024-04-19T03:11:25.892Z\"}}}",
         cveMetadata: "{\"cveId\": \"CVE-2024-29957\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-02T01:17:58.659Z\", \"dateReserved\": \"2024-03-22T05:18:44.193Z\", \"assignerOrgId\": \"87b297d7-335e-4844-9551-11b97995a791\", \"datePublished\": \"2024-04-19T03:11:25.892Z\", \"assignerShortName\": \"brocade\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}

ghsa-jw6c-wq8m-h8g9

Vulnerability from github

Published

2024-04-19 06:30

Modified

2025-02-04 18:30

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2024-29957",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-532",
      ],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2024-04-19T04:15:09Z",
      severity: "HIGH",
   },
   details: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.",
   id: "GHSA-jw6c-wq8m-h8g9",
   modified: "2025-02-04T18:30:44Z",
   published: "2024-04-19T06:30:27Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2024-29957",
      },
      {
         type: "WEB",
         url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
         type: "CVSS_V3",
      },
   ],
}

gsd-2024-29957

Vulnerability from gsd

Modified

2024-04-03 05:02

Details

Aliases

CVE-2024-29957

JSON

To clipboard

{
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2024-29957",
         ],
         details: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\n",
         id: "GSD-2024-29957",
         modified: "2024-04-03T05:02:30.707389Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "sirt@brocade.com",
            ID: "CVE-2024-29957",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "Brocade SANnav",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "not down converted",
                                       x_cve_json_5_version_data: {
                                          defaultStatus: "affected",
                                          versions: [
                                             {
                                                status: "affected",
                                                version: "before v2.3.1 and v2.3.0a",
                                             },
                                          ],
                                       },
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "Brocade",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\n",
               },
            ],
         },
         generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
         impact: {
            cvss: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        cweId: "CWE-532",
                        lang: "eng",
                        value: "CWE-532: Insertion of Sensitive Information into Log File",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
                  refsource: "MISC",
                  url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
               },
            ],
         },
         source: {
            discovery: "UNKNOWN",
         },
      },
      "nvd.nist.gov": {
         cve: {
            descriptions: [
               {
                  lang: "en",
                  value: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\n",
               },
               {
                  lang: "es",
                  value: "Cuando los servidores Brocade SANnav anteriores a v2.3.1 y v2.3.0a están configurados en modo de recuperación de desastres, la clave de cifrado se almacena en los archivos de registro de recuperación ante desastres. Esto podría proporcionar a los atacantes una ruta adicional y menos protegida para adquirir la clave de cifrado.",
               },
            ],
            id: "CVE-2024-29957",
            lastModified: "2024-04-19T13:10:25.637",
            metrics: {
               cvssMetricV31: [
                  {
                     cvssData: {
                        attackComplexity: "LOW",
                        attackVector: "NETWORK",
                        availabilityImpact: "NONE",
                        baseScore: 7.5,
                        baseSeverity: "HIGH",
                        confidentialityImpact: "HIGH",
                        integrityImpact: "NONE",
                        privilegesRequired: "NONE",
                        scope: "UNCHANGED",
                        userInteraction: "NONE",
                        vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                        version: "3.1",
                     },
                     exploitabilityScore: 3.9,
                     impactScore: 3.6,
                     source: "sirt@brocade.com",
                     type: "Secondary",
                  },
               ],
            },
            published: "2024-04-19T04:15:09.390",
            references: [
               {
                  source: "sirt@brocade.com",
                  url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
               },
            ],
            sourceIdentifier: "sirt@brocade.com",
            vulnStatus: "Awaiting Analysis",
            weaknesses: [
               {
                  description: [
                     {
                        lang: "en",
                        value: "CWE-532",
                     },
                  ],
                  source: "sirt@brocade.com",
                  type: "Secondary",
               },
            ],
         },
      },
   },
}

WID-SEC-W-2024-0934

Vulnerability from csaf_certbund

Published

2024-04-18 22:00

Modified

2024-10-14 22:00

Summary

Broadcom Brocade SANnav: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Brocade SANnav ist eine Managementlösung für Storage Area Networks (SAN).

Angriff

Ein Angreifer kann mehrere Schwachstellen in Broadcom Brocade SANnav ausnutzen, um Dateien zu manipulieren oder vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme

- UNIX

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         text: "mittel",
      },
      category: "csaf_base",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "de-DE",
      notes: [
         {
            category: "legal_disclaimer",
            text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.",
         },
         {
            category: "description",
            text: "Brocade SANnav ist eine Managementlösung für Storage Area Networks (SAN).",
            title: "Produktbeschreibung",
         },
         {
            category: "summary",
            text: "Ein Angreifer kann mehrere Schwachstellen in Broadcom Brocade SANnav ausnutzen, um Dateien zu manipulieren oder vertrauliche Informationen offenzulegen.",
            title: "Angriff",
         },
         {
            category: "general",
            text: "- UNIX",
            title: "Betroffene Betriebssysteme",
         },
      ],
      publisher: {
         category: "other",
         contact_details: "csaf-provider@cert-bund.de",
         name: "Bundesamt für Sicherheit in der Informationstechnik",
         namespace: "https://www.bsi.bund.de",
      },
      references: [
         {
            category: "self",
            summary: "WID-SEC-W-2024-0934 - CSAF Version",
            url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0934.json",
         },
         {
            category: "self",
            summary: "WID-SEC-2024-0934 - Portal Version",
            url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0934",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23249",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23250",
         },
         {
            category: "external",
            summary: "GitHub Advisory",
            url: "https://github.com/advisories/GHSA-68wm-4xjg-6p6m",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23241",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23255",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23248",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23254",
         },
         {
            category: "external",
            summary: "### vom 2024-10-15",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24999",
         },
      ],
      source_lang: "en-US",
      title: "Broadcom Brocade SANnav: Mehrere Schwachstellen",
      tracking: {
         current_release_date: "2024-10-14T22:00:00.000+00:00",
         generator: {
            date: "2024-10-15T08:14:53.050+00:00",
            engine: {
               name: "BSI-WID",
               version: "1.3.8",
            },
         },
         id: "WID-SEC-W-2024-0934",
         initial_release_date: "2024-04-18T22:00:00.000+00:00",
         revision_history: [
            {
               date: "2024-04-18T22:00:00.000+00:00",
               number: "1",
               summary: "Initiale Fassung",
            },
            {
               date: "2024-10-14T22:00:00.000+00:00",
               number: "2",
               summary: "Neue Updates aufgenommen",
            },
         ],
         status: "final",
         version: "2",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<2.3.1",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.1",
                           product_id: "T034313",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.1",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.1",
                           product_id: "T034313-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.1",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.0a",
                           product_id: "T034314",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.0a",
                           product_id: "T034314-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.0a",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.0a",
                           product_id: "T034391",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.0a",
                           product_id: "T034391-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.0a",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.1a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.1a",
                           product_id: "T038317",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.1a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.1a",
                           product_id: "T038317-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.1a",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Brocade SANnav",
               },
            ],
            category: "vendor",
            name: "Broadcom",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-29964",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund einer unsicheren Architektur und Konfiguration. Ein entfernter, privilegierter Angreifer kann diese Schwachstelle ausnutzen, um Dateien zu manipulieren.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29964",
      },
      {
         cve: "CVE-2024-29965",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht in der Webschnittstelle und der Befehlszeilenschnittstelle, die es ermöglichen, Sicherungsdateien wiederherzustellen und durch Wiederherstellung auf einer neuen bösartigen Appliance Passwörter von Switches abzurufen. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29965",
      },
      {
         cve: "CVE-2024-29957",
         notes: [
            {
               category: "description",
               text: "Es bestehen mehrere Schwachstellen in Broadcom Brocade SANnav. Diese Fehler bestehen aufgrund des Verschlüsselungsschlüssels, der in den DR-Protokolldateien gespeichert wird, und der hartkodierten Speicherung von Anmeldeinformationen in der Dokumentation. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29957",
      },
      {
         cve: "CVE-2024-29966",
         notes: [
            {
               category: "description",
               text: "Es bestehen mehrere Schwachstellen in Broadcom Brocade SANnav. Diese Fehler bestehen aufgrund des Verschlüsselungsschlüssels, der in den DR-Protokolldateien gespeichert wird, und der hartkodierten Speicherung von Anmeldeinformationen in der Dokumentation. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29966",
      },
      {
         cve: "CVE-2024-29962",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund einer unsicheren Einstellung für die Dateiberechtigung, die Dateien weltlesbar macht. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29962",
      },
      {
         cve: "CVE-2024-29967",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund eines unsicheren Einhängepunkts in den Docker-Appliances. Ein lokaler, privilegierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29967",
      },
   ],
}

wid-sec-w-2024-0934

Vulnerability from csaf_certbund

Published

2024-04-18 22:00

Modified

2024-10-14 22:00

Summary

Broadcom Brocade SANnav: Mehrere Schwachstellen

Notes

Produktbeschreibung

Brocade SANnav ist eine Managementlösung für Storage Area Networks (SAN).

Angriff

Ein Angreifer kann mehrere Schwachstellen in Broadcom Brocade SANnav ausnutzen, um Dateien zu manipulieren oder vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme

- UNIX

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         text: "mittel",
      },
      category: "csaf_base",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "de-DE",
      notes: [
         {
            category: "legal_disclaimer",
            text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.",
         },
         {
            category: "description",
            text: "Brocade SANnav ist eine Managementlösung für Storage Area Networks (SAN).",
            title: "Produktbeschreibung",
         },
         {
            category: "summary",
            text: "Ein Angreifer kann mehrere Schwachstellen in Broadcom Brocade SANnav ausnutzen, um Dateien zu manipulieren oder vertrauliche Informationen offenzulegen.",
            title: "Angriff",
         },
         {
            category: "general",
            text: "- UNIX",
            title: "Betroffene Betriebssysteme",
         },
      ],
      publisher: {
         category: "other",
         contact_details: "csaf-provider@cert-bund.de",
         name: "Bundesamt für Sicherheit in der Informationstechnik",
         namespace: "https://www.bsi.bund.de",
      },
      references: [
         {
            category: "self",
            summary: "WID-SEC-W-2024-0934 - CSAF Version",
            url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0934.json",
         },
         {
            category: "self",
            summary: "WID-SEC-2024-0934 - Portal Version",
            url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0934",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23249",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23250",
         },
         {
            category: "external",
            summary: "GitHub Advisory",
            url: "https://github.com/advisories/GHSA-68wm-4xjg-6p6m",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23241",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23255",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23248",
         },
         {
            category: "external",
            summary: "Brocade Security Advisory vom 2024-04-18",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23254",
         },
         {
            category: "external",
            summary: "### vom 2024-10-15",
            url: "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24999",
         },
      ],
      source_lang: "en-US",
      title: "Broadcom Brocade SANnav: Mehrere Schwachstellen",
      tracking: {
         current_release_date: "2024-10-14T22:00:00.000+00:00",
         generator: {
            date: "2024-10-15T08:14:53.050+00:00",
            engine: {
               name: "BSI-WID",
               version: "1.3.8",
            },
         },
         id: "WID-SEC-W-2024-0934",
         initial_release_date: "2024-04-18T22:00:00.000+00:00",
         revision_history: [
            {
               date: "2024-04-18T22:00:00.000+00:00",
               number: "1",
               summary: "Initiale Fassung",
            },
            {
               date: "2024-10-14T22:00:00.000+00:00",
               number: "2",
               summary: "Neue Updates aufgenommen",
            },
         ],
         status: "final",
         version: "2",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<2.3.1",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.1",
                           product_id: "T034313",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.1",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.1",
                           product_id: "T034313-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.1",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.0a",
                           product_id: "T034314",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.0a",
                           product_id: "T034314-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.0a",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.0a",
                           product_id: "T034391",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.0a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.0a",
                           product_id: "T034391-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.0a",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<2.3.1a",
                        product: {
                           name: "Broadcom Brocade SANnav <2.3.1a",
                           product_id: "T038317",
                        },
                     },
                     {
                        category: "product_version",
                        name: "2.3.1a",
                        product: {
                           name: "Broadcom Brocade SANnav 2.3.1a",
                           product_id: "T038317-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:broadcom:brocade_sannav:2.3.1a",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Brocade SANnav",
               },
            ],
            category: "vendor",
            name: "Broadcom",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-29964",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund einer unsicheren Architektur und Konfiguration. Ein entfernter, privilegierter Angreifer kann diese Schwachstelle ausnutzen, um Dateien zu manipulieren.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29964",
      },
      {
         cve: "CVE-2024-29965",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht in der Webschnittstelle und der Befehlszeilenschnittstelle, die es ermöglichen, Sicherungsdateien wiederherzustellen und durch Wiederherstellung auf einer neuen bösartigen Appliance Passwörter von Switches abzurufen. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29965",
      },
      {
         cve: "CVE-2024-29957",
         notes: [
            {
               category: "description",
               text: "Es bestehen mehrere Schwachstellen in Broadcom Brocade SANnav. Diese Fehler bestehen aufgrund des Verschlüsselungsschlüssels, der in den DR-Protokolldateien gespeichert wird, und der hartkodierten Speicherung von Anmeldeinformationen in der Dokumentation. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29957",
      },
      {
         cve: "CVE-2024-29966",
         notes: [
            {
               category: "description",
               text: "Es bestehen mehrere Schwachstellen in Broadcom Brocade SANnav. Diese Fehler bestehen aufgrund des Verschlüsselungsschlüssels, der in den DR-Protokolldateien gespeichert wird, und der hartkodierten Speicherung von Anmeldeinformationen in der Dokumentation. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29966",
      },
      {
         cve: "CVE-2024-29962",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund einer unsicheren Einstellung für die Dateiberechtigung, die Dateien weltlesbar macht. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29962",
      },
      {
         cve: "CVE-2024-29967",
         notes: [
            {
               category: "description",
               text: "Es besteht eine Schwachstelle in Broadcom Brocade SANnav. Dieser Fehler besteht aufgrund eines unsicheren Einhängepunkts in den Docker-Appliances. Ein lokaler, privilegierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.",
            },
         ],
         product_status: {
            known_affected: [
               "T034314",
               "T034313",
               "T038317",
               "T034391",
            ],
         },
         release_date: "2024-04-18T22:00:00.000+00:00",
         title: "CVE-2024-29967",
      },
   ],
}

fkie_cve-2024-29957

Vulnerability from fkie_nvd

Published

2024-04-19 04:15

Modified

2025-02-04 15:57

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

▼	URL	Tags
	sirt@brocade.com	https://support.broadcom.com/external/content/SecurityAdvisories/0/23241	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.broadcom.com/external/content/SecurityAdvisories/0/23241	Vendor Advisory

Impacted products

	Vendor	Product	Version
	broadcom	brocade_sannav	*

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "303EE152-4CED-4655-B035-CB3B91E5E288",
                     versionEndExcluding: "2.3.0a",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "When Brocade SANnav before v2.3.1 and v2.3.0a servers are configured in Disaster Recovery mode, the encryption key is stored in the DR log files. This could provide attackers with an additional, less-protected path to acquiring the encryption key.\n",
      },
      {
         lang: "es",
         value: "Cuando los servidores Brocade SANnav anteriores a v2.3.1 y v2.3.0a están configurados en modo de recuperación de desastres, la clave de cifrado se almacena en los archivos de registro de recuperación ante desastres. Esto podría proporcionar a los atacantes una ruta adicional y menos protegida para adquirir la clave de cifrado.",
      },
   ],
   id: "CVE-2024-29957",
   lastModified: "2025-02-04T15:57:57.087",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "sirt@brocade.com",
            type: "Secondary",
         },
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2024-04-19T04:15:09.390",
   references: [
      {
         source: "sirt@brocade.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://support.broadcom.com/external/content/SecurityAdvisories/0/23241",
      },
   ],
   sourceIdentifier: "sirt@brocade.com",
   vulnStatus: "Analyzed",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-532",
            },
         ],
         source: "sirt@brocade.com",
         type: "Secondary",
      },
      {
         description: [
            {
               lang: "en",
               value: "CWE-532",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2024-29957

Vulnerability from cvelistv5

ghsa-jw6c-wq8m-h8g9

Vulnerability from github

gsd-2024-29957

Vulnerability from gsd

WID-SEC-W-2024-0934

Vulnerability from csaf_certbund

wid-sec-w-2024-0934

Vulnerability from csaf_certbund

fkie_cve-2024-29957

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature