CVE-2023-4334

CVE-2023-4334: Broadcom RAID Controller Web server (nginx) is serving private files without any authentication

Vendor Broadcom

Product LSI Storage Authority (LSA)

Published August 15, 2023

Last update November 4, 2025

CVSS base score

—

What the vulnerability does

Description

Broadcom RAID Controller Web server (nginx) is serving private files without any authentication

Key dates

August 15, 2023 CVE published

November 4, 2025 Record updated

CVE CVE-2023-4334

Vendor Broadcom

Product LSI Storage Authority (LSA)

Affected < 7.017.011.000

Vendor Intel

Product RAID Web Console 3 (RWC3)

Affected < 7.017.011.000