CVE-2023-4332

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Aug 15, 2023

Updated: Aug 21, 2023

CWE ID 79

Summary

CVE-2023-4332: A critical vulnerability has been identified in the Broadcom RAID Controller web interface. This issue arises due to improper permissions on the log file, allowing unauthorized users to access sensitive information. An attacker can potentially exploit this vulnerability to gain unauthorized access to the system and cause significant damage. It is recommended that users update their RAID Controllers to the latest version to mitigate this risk. Access to log files should also be restricted to trusted users to prevent unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/suM2F-
https://www.cve.org/CVERecord?id=CVE-2023-4332
https://nvd.nist.gov/vuln/detail/CVE-2023-4332

Back to Vulnerability Database

CVE-2023-4332

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations