Vulnerabilidades em Broadcom
91 resultadosCVE-2023-4325—Broadcom RAID Controller web interface is vulnerable due to usage of Libcurl with LSA has known vulnerabilitiesEPSS 0.6%CVE-2023-4344CRITICALBroadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connectionEPSS 0.6%CVE-2023-4337—Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installationEPSS 0.6%CVE-2023-4329—Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attributeEPSS 0.6%CVE-2023-4341—Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUIEPSS 0.6%CVE-2023-4336—Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attributeEPSS 0.6%CVE-2025-4971HIGHBroadcom Automic Automation Agent Unix privilege escalationEPSS 0.5%CVE-2023-4334—Broadcom RAID Controller Web server (nginx) is serving private files without any authenticationEPSS 0.5%CVE-2023-4332—Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log fileEPSS 0.5%CVE-2023-4335—Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on LinuxEPSS 0.5%CVE-2023-4343—Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameterEPSS 0.5%CVE-2023-4345—Broadcom RAID Controller web interface is vulnerable client-side control bypassEPSS 0.5%CVE-2024-36455CRITICALSymantec Privileged Access Manager Remote Command Execution vulnerabilityEPSS 0.5%CVE-2025-10847HIGHDX UIM Probe Improper ACL Handling RCEEPSS 0.4%CVE-2024-36459HIGHCross-Site Scripting Vulnerability in Symantec SiteMinder Web AgentEPSS 0.4%CVE-2023-4326—Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuitesEPSS 0.3%CVE-2026-11815MEDIUMInsecure Deserialization via MITM in Layer 7 Policy ManagerEPSS 0.3%CVE-2025-69273HIGHSpectrum broken authenticationEPSS 0.3%CVE-2025-4663MEDIUMDenial-of-Service (DoS) after Unusual or Exceptional Conditions vulnerabilityEPSS 0.3%CVE-2024-38493MEDIUMSymantec Privileged Access Manager Reflected Cross Site Scripting vulnerabilityEPSS 0.3%