CVE-2023-4327

Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:broadcom:raid_controller_web_interface:51.12.0-2779:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

History

25 Sep 2024, 01:15

Type Values Removed Values Added
CWE CWE-327 CWE-522

05 Sep 2024, 22:15

Type Values Removed Values Added
CWE CWE-327

21 Aug 2023, 18:40

Type Values Removed Values Added
References (MISC) https://www.broadcom.com/support/resources/product-security-centerĀ - (MISC) https://www.broadcom.com/support/resources/product-security-centerĀ - Product
CPE cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:raid_controller_web_interface:51.12.0-2779:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5
CWE NVD-CWE-noinfo

15 Aug 2023, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-15 19:15

Updated : 2024-09-25 01:15


NVD link : CVE-2023-4327

Mitre link : CVE-2023-4327

CVE.ORG link : CVE-2023-4327


JSON object : View

Products Affected

broadcom

  • raid_controller_web_interface

linux

  • linux_kernel
CWE
NVD-CWE-noinfo CWE-522

Insufficiently Protected Credentials