CVE-2025-4662

CWE-497 CWE-4554 documents4 sources

Severity

5.1MEDIUM

EPSS

0.0%

top 91.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Brocade Sannav

Timeline

PublishedJul 10

Description

Brocade SANnav before SANnav 2.4.0a logs plaintext passphrases in the Brocade SANnav host server audit logs while executing OpenSSL command using a passphrase from the command line or while providing the passphrase through a temporary file. These audit logs are the local server VM’s audit logs and are not controlled by SANnav. These logs are only visible to the server admin of the host server and are not visible to the SANnav admin or any SANnav user.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

▶NVDbroadcom/brocade_sannav< 2.4.0a

▶CVEListV5broadcom/brocade_sannavbefore SANnav 2.4.0a

🔴Vulnerability Details

GHSA

GHSA-5jx5-2f25-63x5: Brocade SANnav before SANnav 2↗2025-07-10

▶

CVEList

Plaintext security passwords are logged in the audit logs while executing openssl cmd↗2025-07-10

▶

📋Vendor Advisories

Microsoft

A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.↗2022-12-13

▶