CRITICAL✓ PATCH🇬🇧 English

CVE-2023-4337

CVSS 9.8v3.1pub. 2023-08-15upd. 2025-11-04

Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Broadcom Raid Controller Web Interface

    APP
    Broadcom
    51.12.0-2779
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2023-4329CRITICAL9.8ten sam produkt

Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does n...

CVE-2023-4325CRITICAL9.8ten sam produkt

Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilitie...

CVE-2023-4324CRITICAL9.8ten sam produkt

Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security...

CVE-2023-4323CRITICAL9.8ten sam produkt

Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gate...

CVE-2023-4336CRITICAL9.8ten sam produkt

Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does n...