CVE-2025-12773 is a vulnerability classified under CWE-209, which involves the generation of error messages containing sensitive information. Specifically, in Brocade SANnav versions prior to 2.4.0a, the update-reports-purge-settings.sh script logs the SANnav database password into system audit logs. This logging behavior exposes the password in plaintext within logs that may be accessible to users with audit log access. An attacker who is remotely authenticated and has access to these audit logs can extract the database password, thereby gaining unauthorized access to the SANnav database. The vulnerability requires low attack complexity but does require high privileges (remote authenticated user) and some user interaction. The CVSS 4.0 score of 7.1 reflects a high severity due to the high impact on confidentiality and integrity, with no impact on availability. The vulnerability affects the confidentiality of critical credentials, potentially allowing attackers to manipulate or disrupt SAN management operations. No patches are linked in the provided data, so organizations must monitor vendor advisories for updates. No known exploits have been reported in the wild, but the exposure of database credentials in logs is a significant risk vector.

For European organizations, the exposure of SANnav database credentials can lead to unauthorized access to storage area network management systems, potentially allowing attackers to manipulate storage configurations, disrupt data availability, or exfiltrate sensitive data. Given that SANnav is used to manage Brocade SAN fabrics, compromise of these credentials could impact critical infrastructure supporting enterprise data centers, cloud providers, and service providers across Europe. The confidentiality breach could cascade into integrity issues if attackers alter SAN configurations or data routing. The requirement for authenticated access limits the attack surface but insider threats or compromised credentials could be leveraged to exploit this vulnerability. The impact is particularly significant for sectors with stringent data protection requirements such as finance, healthcare, and government institutions within Europe. Additionally, the vulnerability could undermine compliance with GDPR if sensitive data is exposed or improperly handled due to SAN disruptions.

European organizations should immediately audit access controls to system audit logs to restrict access strictly to trusted administrators. Implement monitoring and alerting on access to audit logs containing sensitive information. Upgrade Brocade SANnav installations to version 2.4.0a or later once available, as this version addresses the vulnerability. If immediate patching is not possible, consider disabling or modifying the update-reports-purge-settings.sh script to prevent logging of sensitive credentials. Employ encryption or secure logging mechanisms to protect audit logs from unauthorized access. Conduct regular credential rotation for SANnav database passwords to limit exposure duration. Additionally, enforce strong authentication and network segmentation to reduce the risk of unauthorized authenticated access. Finally, perform thorough incident response readiness to detect and respond to any suspicious access to audit logs or SANnav systems.