The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account credentials at the ‘trace’ and the ‘debug’ logging level; which could allow a local authenticated attacker to access sensitive information.
[
{
"product": "Brocade SANnav",
"vendor": "Brocade Communications Systems, Inc.",
"versions": [
{
"status": "affected",
"version": "versions before v2.0"
}
]
}
]