Security Advisory ID : BSA-2020-1079
Component : firmwareDownload
Revision : 2.0
**
A vulnerability in the firmwaredownload operation in Brocade Fabric OS versions before Brocade Fabric OS v7.4.2g could allow an authenticated, remote attacker to view a user password in cleartext. The vulnerability is due to incorrectly logging the user password in log files.
Note: Brocade Fabric OS versions 8x, 9x, and later releases are not affected.
Affected Products
Brocade Fabric OS versions before Fabric OS v7.4.2g