Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute
Metrics
Affected Vendors & Products
References
History
Tue, 08 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Broadcom lsi Storage Authority
Intel Intel raid Web Console 3 |
|
CPEs | cpe:2.3:a:broadcom:lsi_storage_authority:*:*:*:*:*:*:*:* cpe:2.3:a:intel:raid_web_console_3:-:*:*:*:*:windows:*:* |
|
Vendors & Products |
Broadcom lsi Storage Authority
Intel Intel raid Web Console 3 |
|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2023-08-15T18:25:38.060Z
Updated: 2024-10-08T18:22:13.644Z
Reserved: 2023-08-14T21:25:58.373Z
Link: CVE-2023-4329
Vulnrichment
Updated: 2024-08-02T07:24:04.476Z
NVD
Status : Modified
Published: 2023-08-15T19:15:11.117
Modified: 2024-11-21T08:34:52.060
Link: CVE-2023-4329
Redhat
No data.