Summary

Security Advisory ID : BSA-2019-865

Component : SANnav

Revision : 1.0

The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account credentials at the ‘trace’  and the 'debug' logging level; which could allow a local authenticated attacker to access sensitive information.

References
CWE-532: Information Exposure through Log Files.

 Product Confirmed Non Vulnerable

No other Brocade Fibre Channel technology products from Broadcom are currently known to be affected by these vulnerabilities.