CVE-2024-29962

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-29962
Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://support.broadcom.com/external/content/SecurityAdvisories/0/23248
Configurations

No configuration.

History

No history.

Information

Published : 2024-04-19 05:15

Updated : 2024-04-19 13:10

NVD link : CVE-2024-29962

Mitre link : CVE-2024-29962

CVE.ORG link : CVE-2024-29962

JSON object : View

Products Affected

No product.

CWE
CWE-276

Incorrect Default Permissions