Vulnerability Details CVE-2024-29950
The class FileTransfer implemented in Brocade SANnav before v2.3.1, v2.3.0a, uses the ssh-rsa signature scheme, which has a SHA-1 hash.
The vulnerability could allow a remote, unauthenticated attacker to perform a man-in-the-middle attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.3%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-29950
-
cpe:2.3:a:broadcom:brocade_sannav:-
-
cpe:2.3:a:broadcom:brocade_sannav:1.1.0
-
cpe:2.3:a:broadcom:brocade_sannav:1.1.1
-
cpe:2.3:a:broadcom:brocade_sannav:2.0
-
cpe:2.3:a:broadcom:brocade_sannav:2.1.0
-
cpe:2.3:a:broadcom:brocade_sannav:2.1.1
-
cpe:2.3:a:broadcom:brocade_sannav:2.2.0
-
cpe:2.3:a:broadcom:brocade_sannav:2.2.1
-
cpe:2.3:a:broadcom:brocade_sannav:2.2.2
-
cpe:2.3:a:broadcom:brocade_sannav:2.2.2a
-
cpe:2.3:a:broadcom:brocade_sannav:2.3.0