PT-2023-28818 · Broadcom · Broadcom Raid Controller

Intel Dcg

Publicado

2023-08-15

Atualizado

2023-08-21

CVE-2023-4339

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Broadcom RAID Controller (affected versions not specified)

Description The Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM, which are stored with insecure file permissions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2023-4339

Produtos afetados

Broadcom Raid Controller

PT-2023-28818 · Broadcom · Broadcom Raid Controller

CVE-2023-4339

Identificadores relacionados

Produtos afetados

Referências · 9