Home
CRITICAL: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
5.3.17 (custom)
affected
6.1.8 (custom)
affected
6.0.7 (custom)
affected
6.2.0 (custom)
affected
6.3.0 (custom)
affected
6.4.0 (custom)
affected
6.5.0 (custom)
affected
Description
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array.
Problem types
CWE-287 Improper Authentication
Product status
5.3.17 (custom)
6.1.8 (custom)
6.0.7 (custom)
6.2.0 (custom)
6.3.0 (custom)
6.4.0 (custom)
6.5.0 (custom)
References
purestorage.com/security
