CVE-2023-4344

CVE-2023-4344: Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection

Vendor Broadcom
Product LSI Storage Authority (LSA)
Weakness CWE-331
Published August 15, 2023
Last update November 4, 2025

CVSS base score

What the vulnerability does

01Description

Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection

Key dates

02Disclosure timeline

August 15, 2023 CVE published
November 4, 2025 Record updated