CVE-2024-29964 Information

Description

Docker instances in Brocade SANnav before v2.3.1 and v2.3.0a have an insecure architecture and configuration that leads to multiple vulnerabilities. Docker daemons are exposed to the WAN interface and other vulnerabilities allow total control over the Ova appliance. A Docker instance could access any other instances and a few could access sensitive files. The vulnerability could allow a sudo privileged user on the underlying OS to access and modify these files.

Reference

https://support.broadcom.com/external/content/SecurityAdvisories/0/23249