Primary

Context

Brocade SANnav Plaintext Passphrase Logging Vulnerability

Vulnerability

Patched

A vulnerability exists in Brocade SANnav versions prior to 2.4.0a, where plaintext passphrases are logged in the host server's audit logs. This occurs when the OpenSSL command is executed with a passphrase provided via the command line or through a temporary file. These audit logs are local to the server VM and are not managed by SANnav. They can only be accessed by the server administrator and are not visible to SANnav administrators or users.

Impact

Logging of plaintext passphrases in audit logs, potentially leading to unauthorized access if the logs are accessed by an unauthorized user.

Remediation

Users can upgrade to Brocade SANnav version 2.4.0a to address this vulnerability.

Added: Jul 10, 2025, 9:29 PM

Updated: Jul 10, 2025, 9:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

3.3

exploitability

3.5

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

3.3

exploitability

3.5

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Brocade SANnav Plaintext Passphrase Logging Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Brocade SANnav

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating