CVE-2024-29967 — Incorrect Default Permissions in Brocade Sannav

CWE-276 — Incorrect Default Permissions3 documents3 sources

Severity

6.0MEDIUMNVD

CNA4.4

EPSS

0.1%

top 75.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Brocade Sannav Brocade Sannav

Timeline

PublishedApr 19

Description

In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points, allowing reading and writing access to sensitive files. The vulnerability could allow a sudo privileged user on the host OS to read and write access to these files.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:NExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

▶NVDbroadcom/brocade_sannav< 2.3.0a

▶CVEListV5brocade/brocade_sannav before Brocade SANnav v2.31 and v2.3.0a

🔴Vulnerability Details

CVEList

In Brocade SANnav before v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points↗2024-04-19

▶

GHSA

GHSA-gfrg-8rq8-4fc9: In Brocade SANnav before Brocade SANnav v2↗2024-04-19

▶