VYPR
Unrated severityNVD Advisory· Published Feb 2, 2026· Updated Feb 3, 2026

Brocade SANnav DataBase plaintext password is logged in failover logs (CVE-2025-12680)

CVE-2025-12680

Description

Brocade SANnav before Brocade SANnav 2.4.0b logs database passwords in clear text in the standby SANnav server, after disaster recovery failover. The vulnerability could allow a remote authenticated attacker with admin privilege able to access the SANnav logs or the supportsave to read the database password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Brocade/SANnavllm-fuzzy2 versions
    <2.4.0b+ 1 more
    • (no CPE)range: <2.4.0b
    • (no CPE)range: before Brocade SANnav 2.4.0b

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.