A vulnerability affects Brocade SANnav before v2.3.1 and v2.3.0a. It allows a Brocade SANnav service to send ping commands in the background at regular intervals to gridgain.com to check if updates are available for the Component. This could make an unauthenticated, remote attacker aware of the behavior and launch a supply-chain attack against a Brocade SANnav appliance.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: brocade
Published: 2024-04-19T03:59:25.379Z
Updated: 2024-08-02T01:17:58.481Z
Reserved: 2024-03-22T05:23:33.322Z
Link: CVE-2024-29961
Vulnrichment
Updated: 2024-08-02T01:17:58.481Z
NVD
Status : Awaiting Analysis
Published: 2024-04-19T04:15:10.553
Modified: 2024-04-19T13:10:25.637
Link: CVE-2024-29961
Redhat
No data.