VYPR
Unrated severityNVD Advisory· Published Apr 19, 2024· Updated Sep 18, 2024

SQL Table names, column names, and SQL queries are collected in DR standby Supportsave

CVE-2024-29968

Description

An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when Brocade SANnav instances are configured in disaster recovery mode. SQL Table names, column names, and SQL queries are collected in DR standby Supportsave. This could allow authenticated users to access the database structure and its contents.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Brocade/SANnavllm-fuzzy
    Range: < 2.3.1, < 2.3.0a
  • Brocade/Brocade SANnavv5
    Range: before v2.3.1 and v2.3.0a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.