cbcvebase.
CVE-2024-29961
published 2024-04-19

CVE-2024-29961: A vulnerability affects Brocade SANnav before v2.3.1 and v2.3.0a. It allows a Brocade SANnav service to send ping commands in the background at regular…

PriorityP349high8.2CVSS 3.1
AVNACLPRNUINSUCLINAH
EPSS
0.76%
50.5th percentile
A vulnerability affects Brocade SANnav before v2.3.1 and v2.3.0a. It allows a Brocade SANnav service to send ping commands in the background at regular intervals to gridgain.com to check if updates are available for the Component. This could make an unauthenticated, remote attacker aware of the behavior and launch a supply-chain attack against a Brocade SANnav appliance.

Affected

2 ranges
VendorProductVersion rangeFixed in
broadcombrocade_sannav< 2.3.0a2.3.0a
brocadebrocade_sannav
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.