CVE-2024-29967

CVSS v3 4.4 MEDIUM

4.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

I

n Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points, allowing reading and writing access to sensitive files. The vulnerability could allow a sudo privileged user on the host OS to read and write access to these files.

References

Link	Resource
https://support.broadcom.com/external/content/SecurityAdvisories/0/23254	Vendor Advisory
https://support.broadcom.com/external/content/SecurityAdvisories/0/23254	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:*

History

04 Feb 2025, 15:43

Type	Values Removed	Values Added
CPE		cpe:2.3:a:broadcom:brocade_sannav::::::::
References	~~() https://support.broadcom.com/external/content/SecurityAdvisories/0/23254 -~~	() https://support.broadcom.com/external/content/SecurityAdvisories/0/23254 - Vendor Advisory
First Time		Broadcom Broadcom brocade Sannav

21 Nov 2024, 09:08

Type	Values Removed	Values Added
References	~~() https://support.broadcom.com/external/content/SecurityAdvisories/0/23254 -~~	() https://support.broadcom.com/external/content/SecurityAdvisories/0/23254 -

Information

Published : 2024-04-19 05:15

Updated : 2025-02-04 15:43

NVD link : CVE-2024-29967

Mitre link : CVE-2024-29967

CVE.ORG link : CVE-2024-29967

JSON object : View

Products Affected

brocade_sannav

CWE

CWE-276

Incorrect Default Permissions

{"id": "CVE-2024-29967", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.8}, {"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.0, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 0.8}]}, "published": "2024-04-19T05:15:49.737", "references": [{"url": "https://support.broadcom.com/external/content/SecurityAdvisories/0/23254", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://support.broadcom.com/external/content/SecurityAdvisories/0/23254", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-276"}]}, {"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-276"}]}], "descriptions": [{"lang": "en", "value": "In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances inside the appliance have insecure mount points, allowing reading and writing access to sensitive files. The vulnerability could allow a sudo privileged user on the host OS to read and write access to these files. \n\n"}, {"lang": "es", "value": "En Brocade SANnav anterior a Brocade SANnav v2.31 y v2.3.0a, se observ\u00f3 que las instancias de Docker dentro del dispositivo ten\u00edan puntos de montaje inseguros, lo que permit\u00eda acceso de lectura y escritura a archivos confidenciales. La vulnerabilidad podr\u00eda permitir que un usuario con privilegios sudo en el sistema operativo host tenga acceso de lectura y escritura a estos archivos."}], "lastModified": "2025-02-04T15:43:15.313", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:brocade_sannav:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "303EE152-4CED-4655-B035-CB3B91E5E288", "versionEndExcluding": "2.3.0a"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}