CVE-2023-4342
published 2023-08-15CVE-2023-4342: Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | lsi_storage_authority | < 7.017.011.000 | 7.017.011.000 |
| broadcom | raid_controller_web_interface | — | — |
| gitlab | gitlab | — | — |
| intel | raid_web_console_3 | < 7.017.011.000 | 7.017.011.000 |