CVE-2024-29963 – Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded keys used by Docker to …

19 April 2024

Vuln ID: CVE-2024-29963

Published: 2024-04-19 04:15:10.793

Description: Brocade SANnav OVA before v2.3.1, and v2.3.0a, contain hardcoded keys used by Docker to reach remote registries over TLS. TLS connections with an exposed key allow an attacker to MITM the traffic.
Note: Brocade SANnav doesn’t have access to remote Docker registries.

Base Score: 8.6 – HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Source: NVD.NIST.GOV

Date:

19 April 2024

Categorie(s):

NVD

Tag(s):

NVD

New “Goldoon” Botnet Targets D-Link Routers With Decade-Old Flaw2 May 2024
Appdome launches MobileEDR, merging MTD and EDR to protect enterprise mobile apps2 May 2024
When is One Vulnerability Scanner Not Enough?2 May 2024
Proofpoint DLP Transform secures data moving to ChatGPT, copilots, and other GenAI tools2 May 2024
Dropbox Discloses Breach of Digital Signature Service Affecting All Users2 May 2024