CVE-2025-7397
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-17

Last updated on: 2025-07-22

Assigner: Brocade Communications Systems, LLC

Description
A vulnerability in the ascgshell, of Brocade ASCG before 3.3.0 stores any command executed in the Command Line Interface (CLI) in plain text within the command history. A local authenticated user that can access sensitive information like passwords within the CLI history leading to unauthorized access and potential data breaches.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-17
Last Modified
2025-07-22
Generated
2026-05-06
AI Q&A
2025-07-18
EPSS Evaluated
2026-05-05
NVD
CVE-2025-7397
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
brocade ascgshell *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-312 The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the ascgshell of Brocade ASCG versions before 3.3.0, where any command executed in the Command Line Interface (CLI) is stored in plain text within the command history. A local authenticated user with access to the CLI history can see sensitive information such as passwords, which can lead to unauthorized access and potential data breaches.


How can this vulnerability impact me? :

The vulnerability can impact you by exposing sensitive information like passwords stored in the CLI command history in plain text. This exposure can allow a local authenticated user to gain unauthorized access to systems or data, potentially leading to data breaches and compromise of system security.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart