CVE-2025-12774— SQL queries with sensitive information printed in logs with Brocade SANnav before 3.0

EPSS 0.01% · P1 Updated Feb 04, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-12774

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

SQL queries with sensitive information printed in logs with Brocade SANnav before 3.0

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of database tables and encrypted passwords.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

敏感数据的明文存储

Source: NVD (National Vulnerability Database)

Vulnerability Title

Brocade SANnav 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Brocade SANnav是美国Brocade公司的一个存储区域网络管理软件。 Brocade SANnav 3.0之前版本存在安全漏洞，该漏洞源于迁移脚本存在问题，可能导致数据库SQL查询被收集。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Brocade	SANnav	SANnav before 3.0	-

II. Public POCs for CVE-2025-12774

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-12774

请登录查看更多情报信息。

https://nvd.nist.gov/vuln/detail/CVE-2025-12774

Same Patch Batch · Brocade · 2026-02-03 · 9 CVEs total

CVE-2025-12773		Plain password is generated in the audit logs while executing update-reports-purge-setting
CVE-2025-58383		Privilege escalation via bind command in Brocade Fabric OS
CVE-2025-58379		Password Exposure in Brocade Fabric OS
CVE-2025-58382		Privilege escalation in Brocade Fabric before 9.2.1c2 and 9.2.2 through 9.2.2a
CVE-2026-0383		Information disclosure in Brocade Fabric OS before 9.2.1c2, 9.2.2 through 9.2.2a and 10.0.
CVE-2025-58380		Directory transversal vulnerability in Brocade Fabric OS before 9.2.1 using grep command
CVE-2025-9711		Privilege escalation in Brocade Fabric OS before 9.2.1c3, and 9.2.2 though 9.2.2b
CVE-2025-58381		Directory transversal vulnerability in Brocade Fabric OS before 9.2.1c2 and 9.2.2 through

IV. Related Vulnerabilities

Same product: SANnav

Same vendor: Brocade

Same weakness: CWE-312

V. Comments for CVE-2025-12774

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-12774— SQL queries with sensitive information printed in logs with Brocade SANnav before 3.0

I. Basic Information for CVE-2025-12774

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-12774

III. Intelligence Information for CVE-2025-12774

Same Patch Batch · Brocade · 2026-02-03 · 9 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-12774

Leave a comment