CVE-2024-29952

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to print the Auth, Priv, and SSL key store passwords in unencrypted logs by manipulating command variables.

Published: Apr 18, 2024
Updated: May 4, 2025
CVE: CVE-2024-29952
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-312

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

Software	From	Fixed in
broadcom / brocade_sannav	-	2.3.0a

https://support.broadcom.com/external/content/SecurityAdvisories/0/23238

Vulnerability Database

289,871

CVE-2024-29952