CVE-2025-4662

Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.4.0a

Description: Brocade SANnav logs plaintext passphrases in the host server audit logs when executing an OpenSSL command using a passphrase from the command line or through a temporary file. These audit logs are local to the server VM and are not managed by SANnav. Access to these logs is restricted to the server administrator and is not available to SANnav administrators or users.

Recommendations: Update Brocade SANnav to version 2.4.0a or later.