Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-3489
The firmwaredownload command on Brocade Fabric OS v9.2.0 could log the FTP/SFTP/SCP server password in clear text in the SupportSave file when performing a downgrade from Fabric OS v9.2.0 to any earlier version of Fabric OS.
Broadcom Fabric Operating System 9.2.0
9.8
CVSSv3
CVE-2023-4323
Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup
Broadcom Raid Controller Web Interface 51.12.0-2779
NA
CVE-2023-4330
Rejected reason: Broadcom were unable to duplicate the attack as described by Intel DCG Team.
5.5
CVSSv3
CVE-2023-4333
Broadcom RAID Controller web interface doesn’t enforce SSL cipher ordering by server
Broadcom Raid Controller Web Interface 51.12.0-2779
7.5
CVSSv3
CVE-2023-4334
Broadcom RAID Controller Web server (nginx) is serving private files without any authentication
Broadcom Raid Controller Web Interface 51.12.0-2779
7.5
CVSSv3
CVE-2023-4332
Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file
Broadcom Raid Controller Web Interface 51.12.0-2779
7.5
CVSSv3
CVE-2023-4335
Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux
Broadcom Raid Controller Web Interface 51.12.0-2779
9.8
CVSSv3
CVE-2023-4336
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute
Broadcom Raid Controller Web Interface 51.12.0-2779
9.8
CVSSv3
CVE-2023-4337
Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation
Broadcom Raid Controller Web Interface 51.12.0-2779
9.8
CVSSv3
CVE-2023-4338
Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers
Broadcom Raid Controller Web Interface 51.12.0-2779
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »