Broadcom RAID Controller Web UI - Missing HSTS Header
CVE-2023-4342 Published on August 15, 2023

Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy
Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy

NVD

Products Associated with CVE-2023-4342

stack.watch emails you whenever new vulnerabilities are published in Broadcom Raid Controller Web Interface or Broadcom Lsi Storage Authority. Just hit a watch button to start following.

Broadcom Raid Controller Web Interface

Broadcom Lsi Storage Authority

Affected Versions

Broadcom LSI Storage Authority (LSA):

Before 7.017.011.000 is affected.

Intel RAID Web Console 3 (RWC3):

Before 7.017.011.000 is affected.

Exploit Probability

EPSS

0.09%

Percentile

24.59%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Broadcom RAID Controller Web UI - Missing HSTS HeaderCVE-2023-4342 Published on August 15, 2023

Products Associated with CVE-2023-4342

Affected Versions

Exploit Probability

Broadcom RAID Controller Web UI - Missing HSTS Header
CVE-2023-4342 Published on August 15, 2023