Broadcom RAID Controller Web UI: Missing X-Content-Type-Options Header
CVE-2023-4338 Published on August 15, 2023

Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers

NVD

Products Associated with CVE-2023-4338

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-4338 are published in these products:

Broadcom Raid Controller Web Interface

Broadcom Lsi Storage Authority

Affected Versions

Broadcom LSI Storage Authority (LSA):

Before 7.017.011.000 is affected.

Intel RAID Web Console 3 (RWC3):

Before 7.017.011.000 is affected.

Exploit Probability

EPSS

0.09%

Percentile

24.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Broadcom RAID Controller Web UI: Missing X-Content-Type-Options HeaderCVE-2023-4338 Published on August 15, 2023

Products Associated with CVE-2023-4338

Affected Versions

Exploit Probability

Broadcom RAID Controller Web UI: Missing X-Content-Type-Options Header
CVE-2023-4338 Published on August 15, 2023