Broadcom - Lsi Storage Authority CVE - OpenCVE

Filtered by vendor Broadcom Subscriptions

Filtered by product Lsi Storage Authority Subscriptions

Total 7 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-4335	3 Broadcom, Intel, Linux	4 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3 and 1 more	2024-10-08	7.5 High
Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux
CVE-2023-4332	2 Broadcom, Intel	3 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3	2024-10-08	7.5 High
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file
CVE-2023-4331	2 Broadcom, Intel	3 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3	2024-10-08	7.5 High
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols
CVE-2023-4329	2 Broadcom, Intel	3 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3	2024-10-08	9.8 Critical
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute
CVE-2023-4326	1 Broadcom	2 Lsi Storage Authority, Raid Controller Web Interface	2024-10-08	7.5 High
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites
CVE-2023-4325	2 Broadcom, Intel	3 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3	2024-10-08	9.8 Critical
Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilities
CVE-2023-4324	2 Broadcom, Intel	3 Lsi Storage Authority, Raid Controller Web Interface, Raid Web Console 3	2024-10-08	9.8 Critical
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers

Page 1 of 1.