CVE-2023-4335
published 2023-08-15CVE-2023-4335: Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | lsi_storage_authority | < 7.017.011.000 | 7.017.011.000 |
| broadcom | raid_controller_web_interface | — | — |
| intel | raid_web_console_3 | < 7.017.011.000 | 7.017.011.000 |