Broadcom RAID Controller web UI lacks Secure cookie attribute
CVE-2023-4336 Published on August 15, 2023

Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute

NVD

Products Associated with CVE-2023-4336

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-4336 are published in these products:

Broadcom Raid Controller Web Interface

Broadcom Lsi Storage Authority

Affected Versions

Broadcom LSI Storage Authority (LSA):

Before 7.017.011.000 is affected.

Intel RAID Web Console 3 (RWC3):

Before 7.017.011.000 is affected.

Exploit Probability

EPSS

0.09%

Percentile

24.57%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Broadcom RAID Controller web UI lacks Secure cookie attributeCVE-2023-4336 Published on August 15, 2023

Products Associated with CVE-2023-4336

Affected Versions

Exploit Probability

Broadcom RAID Controller web UI lacks Secure cookie attribute
CVE-2023-4336 Published on August 15, 2023