Vulnerabilities > CVE-2023-4338 - Unspecified vulnerability in Broadcom Raid Controller web Interface 51.12.02779

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

broadcom

critical

NVD

Published: 2023-08-15

Updated: 2023-08-21

Summary

Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers

Vulnerable Configurations

Part	Description	Count
Application	Broadcom Broadcom Raid Controller WEB Interface 51.12.0-2779	1

References

https://www.broadcom.com/support/resources/product-security-center