Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Raid_controller_web_interface
(Broadcom)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-08-15 | CVE-2023-4345 | Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user | Raid_controller_web_interface | 6.5 | ||
| 2023-08-15 | CVE-2023-4323 | Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup | Raid_controller_web_interface | 9.8 | ||
| 2023-08-15 | CVE-2023-4324 | Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers | Raid_controller_web_interface | 9.8 | ||
| 2023-08-15 | CVE-2023-4325 | Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities | Raid_controller_web_interface | 9.8 | ||
| 2023-08-15 | CVE-2023-4326 | Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites | Raid_controller_web_interface | 7.5 | ||
| 2023-08-15 | CVE-2023-4327 | Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux | Raid_controller_web_interface | 5.5 | ||
| 2023-08-15 | CVE-2023-4328 | Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows | Raid_controller_web_interface | 5.5 | ||
| 2023-08-15 | CVE-2023-4329 | Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute | Raid_controller_web_interface | 9.8 | ||
| 2023-08-15 | CVE-2023-4331 | Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols | Raid_controller_web_interface | 7.5 | ||
| 2023-08-15 | CVE-2023-4332 | Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file | Raid_controller_web_interface | 7.5 |