← volver
CVE-2023-4328

Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux

EPSS 0.1%CWE-522
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
15 ago 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows
Productos afectados
Broadcom · LSI Storage Authority (LSA)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.broadcom.com/support/resources/product-security-centerhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html