Brocade SANnav Security Updates - Lenovo Support US

No description provided...

CVE-2025-12679

A vulnerability in Brocade SANnav before 2.4.0b prints the Password-Based Encryption PBE key in plaintext in the system audit log file. The vulnerability could allow a remote authenticated attacker with access to the audit logs to access the pbe key. Note: The vulnerability is only triggered duri...

Brocade SANnav 安全漏洞

Brocade SANnav is a storage area network management software developed by the American company Brocade. Versions of Brocade SANnav prior to 2.4.0b contained security vulnerabilities. These vulnerabilities stemmed from the fact that logs supported by SANnav recorded administrator passwords for...

Brocade SANnav DataBase password in plain text is logged in failover logs (CVE-2025-12680)

Brocade SANnav before Brocade SANnav 2.4.0b logs database passwords in clear text in the standby Brocade SANnav server, after disaster recovery failover. The vulnerability could allow a remote authenticated attacker with admin privilege able to access the SANnav logs or the supportsave to read th...

PT-2025-6497 · Brocade · Brocade Sannav +1

Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.3.1b Description: The issue allows an attacker to read the Brocade SANnav data stream, which includes monitored Brocade Fabric OS switches performance data, port status, zoning information, WWNs, and IP...

CVE-2022-43934

Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered weak on ports 24, 6514, 18023, 19094, and 19095...

The vulnerability of the syslog system for software used in managing SAN networks by Brocade SANnav allows a intruder to gain unauthorized access to protected information.

The vulnerability of the syslog system for SAN management software like Brocade SANnav lies in the fact that data is transmitted in an open manner. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the SCP-server software for managing the SAN Brocade SANnav network allows a intruder to gain access to log files.

The vulnerability of the SCP-server software for managing the SAN Brocade SANnav network is related to the storage of protected information in unencrypted form. Exploiting this vulnerability could allow an attacker to gain access to log files...

CVE-2022-28161

An information exposure through log file vulnerability in Brocade SANNav versions before Brocade SANnav 2.2.0 could allow an authenticated, local attacker to view sensitive information such as ssh passwords in filetansfer.log in debug mode. To exploit this vulnerability, the attacker would need t...