Lucene search
+L

115 matches found

prion
prion
added 2023/08/15 6:15 p.m.17 views

Design/Logic Flaw

Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user...

4CVSS6.5AI score0.00478EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/08/15 5:46 p.m.16 views

CVE-2023-4345 Broadcom RAID Controller web interface is vulnerable client-side control bypass

Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user...

7.1AI score0.00478EPSS
Exploits0References1
cvelist
cvelist
added 2023/08/15 5:46 p.m.33 views

CVE-2023-4345 Broadcom RAID Controller web interface is vulnerable client-side control bypass

Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user...

6.7AI score0.00478EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.6 views

PT-2023-28818 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM, which are stored with insecure file permissions. Recommendations: At the...

7.5CVSS7.3AI score0.0069EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.5 views

PT-2023-28774 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface has an insecure default TLS configuration that supports obsolete and vulnerable TLS protocols. Recommendations: At the moment,...

7.5CVSS6.6AI score0.00293EPSS
Exploits0References8
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.6 views

Broadcom RAID Controller Security Vulnerability

Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller, which stems from a web interface that can easily expose a CIM private key stored in an insecure file, rendering the product susceptible to attac...

7.5CVSS6.6AI score0.0069EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.5 views

PT-2023-28821 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable due to insecure defaults, specifically the lack of an HTTP strict-transport-security policy. This issue can be...

9.8CVSS9.3AI score0.00588EPSS
Exploits0References6
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.6 views

Broadcom RAID Controller Access Control Error Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller that originates from allowing a web server to serve private files to an unauthenticated attacker...

7.5CVSS6.9AI score0.00506EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.4 views

Broadcom RAID Controller Security Vulnerability

Broadcom RAID Controller is a series of RAID controllers from Broadcom USA. A security vulnerability exists in the Broadcom RAID Controller, which stems from a security flaw in the web interface that allows any local user on Linux to access encryption keys, leading to the disclosure of sensitive...

5.5CVSS6.2AI score0.00104EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.5 views

Broadcom RAID Controller 安全漏洞

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation. A security vulnerability exists in the Broadcom RAID Controller that stems from a missing HTTP Content-Security-Policy header in the web interface, which makes the product susceptible to attack...

9.8CVSS8.5AI score0.00588EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.5 views

PT-2023-28747 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites. This issue affects the default...

7.5CVSS6.7AI score0.00334EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.4 views

PT-2023-28796 · Broadcom · Broadcom Raid Controller Web Server

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller Web server nginx affected versions not specified Description: The issue concerns the Broadcom RAID Controller Web server, which is based on nginx and is serving private server-side files without any authentication on...

7.5CVSS7.5AI score0.00493EPSS
Exploits0References5
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.4 views

Broadcom RAID Controller Security Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller, which stems from a web interface where sensitive password information is exposed as a search parameter in the URL, making the product...

7.5CVSS6.7AI score0.00481EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.4 views

Broadcom RAID Controller Security Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller that stems from a lack of HTTP strict-transport-security policy in the web interface, which makes the product vulnerable to attack...

9.8CVSS6.8AI score0.00588EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.4 views

Broadcom RAID Controller Access Control Error Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation. A security vulnerability exists in the Broadcom RAID Controller that originates from allowing a web server to provide private server files to an unauthenticated attacker...

7.5CVSS6.9AI score0.00493EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.5 views

Broadcom RAID Controller Encryption Issue Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller that stems from the web interface's TLS configuration supporting an outdated SHA1 cipher suite, rendering the product susceptible to attack...

7.5CVSS6.7AI score0.00334EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.5 views

PT-2023-28822 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable due to the exposure of sensitive password information in the URL as a URL search parameter. Recommendations: At the...

7.5CVSS7.5AI score0.00481EPSS
Exploits0References6
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.4 views

Broadcom RAID Controller Security Vulnerability

Broadcom RAID Controller is a series of RAID controllers from Broadcom USA. A security vulnerability exists in the Broadcom RAID Controller, which stems from a security flaw in the web interface that allows any local user on Windows to access encryption keys, leading to the disclosure of sensitiv...

5.5CVSS6.2AI score0.00117EPSS
Exploits0References2
cnnvd
cnnvd
added 2023/08/15 12:0 a.m.7 views

Broadcom RAID Controller Security Vulnerability

The Broadcom RAID Controller is a series of RAID controllers from Broadcom Corporation USA. A security vulnerability exists in the Broadcom RAID Controller that stems from a misconfiguration of permissions in the web interface's log file, which makes the product susceptible to attack...

7.5CVSS6.7AI score0.00496EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/08/15 12:0 a.m.5 views

PT-2023-28783 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data. The keys used for encryption are accessible to any local user on Windows...

5.5CVSS6.3AI score0.00117EPSS
Exploits0References5
Rows per page
Query Builder