Vulnerabilities

CVE-2025-6391

by Fred · 17/07/2025

Brocade ASCG before 3.3.0 logs JSON
Web Tokens (JWT) in log files. An attacker with access to the log files
can withdraw the unencrypted tokens with security implications, such as
unauthorized access, session hijacking, and information disclosure.

Assigner : sirt@brocade.com

More information : https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35951

Similar

Tags: Cybersecurity Alert