Show filters
22 Total Results
Displaying 11-20 of 22
Sort by:
Attacker Value
Unknown

CVE-2023-4334

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller Web server (nginx) is serving private files without any authentication
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4333

Disclosure Date: August 15, 2023 (last updated September 24, 2024)
Broadcom RAID Controller web interface doesn’t enforce SSL cipher ordering by server
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4332

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4331

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4329

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4328

Disclosure Date: August 15, 2023 (last updated September 24, 2024)
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4327

Disclosure Date: August 15, 2023 (last updated September 24, 2024)
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4326

Disclosure Date: August 15, 2023 (last updated September 05, 2024)
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4325

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-4324

Disclosure Date: August 15, 2023 (last updated October 08, 2023)
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >