VYPR
Unrated severityNVD Advisory· Published Apr 17, 2024· Updated Aug 2, 2024

Brocade SANnav before v2.3.1, v2.3.0a uses weak encryption

CVE-2024-29950

Description

The class FileTransfer implemented in Brocade SANnav before v2.3.1, v2.3.0a, uses the ssh-rsa signature scheme, which has a SHA-1 hash. The vulnerability could allow a remote, unauthenticated attacker to perform a man-in-the-middle attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Brocade/SANnavllm-fuzzy
    Range: <2.3.1, also <2.3.0a
  • Brocade/Brocade SANnavv5
    Range: versions before Brocade SANnav v2.3.1, v2.3.0a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.