RAID Web Console
by Intel
CVEs (28)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-4339 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions | |||
| CVE-2023-4340 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session prints in the log file | |||
| CVE-2023-4341 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI | |||
| CVE-2023-4342 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy | |||
| CVE-2023-4343 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter | |||
| CVE-2023-4344 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection | |||
| CVE-2023-4323 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup | |||
| CVE-2023-4345 | 0.00 | — | 0.00 | Aug 15, 2023 | Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user |
- CVE-2023-4339Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions
- CVE-2023-4340Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session prints in the log file
- CVE-2023-4341Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI
- CVE-2023-4342Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy
- CVE-2023-4343Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter
- CVE-2023-4344Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection
- CVE-2023-4323Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup
- CVE-2023-4345Aug 15, 2023risk 0.00cvss —epss 0.00
Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user
Page 2 of 2