CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-12680

Brocade SANnav before Brocade SANnav 2.4.0b logs database passwords in clear text in the standby SANnav server, after disaster recovery failover. The vulnerability could allow a remote authenticated attacker with admin privilege able to access the SANnav logs or the supportsave to read the database password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.0%

CVSS Severity

CVSS v3 Score 4.9

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36844

Products affected by CVE-2025-12680

Broadcom » Sannav » Version: N/A

cpe:2.3:a:broadcom:sannav:-
Broadcom » Sannav » Version: 2.1.0

cpe:2.3:a:broadcom:sannav:2.1.0
Broadcom » Sannav » Version: 2.1.1

cpe:2.3:a:broadcom:sannav:2.1.1
Broadcom » Sannav » Version: 2.1.1.8

cpe:2.3:a:broadcom:sannav:2.1.1.8
Broadcom » Sannav » Version: 2.2.0.0

cpe:2.3:a:broadcom:sannav:2.2.0.0
Broadcom » Sannav » Version: 2.2.0.2

cpe:2.3:a:broadcom:sannav:2.2.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-12680

Products

Pricing

Contact Us