Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers
broadcom raid controller web interface 51.12.0-2779