Design/Logic Flaw

2023-10-0300:15:00

PRIOn knowledge base

www.prio-n.com

flasharray purity

retention lock alteration

pgroup safemode protection

design flaw

5.1 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.1%

JSON

A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator can alter the retention lock of a pgroup and disable pgroup SafeMode protection.

CPENameOperatorVersion
purity\\/\\/fage6.4.0
purity\\/\\/fale6.4.1
purity\\/\\/fage6.3.0
purity\\/\\/fale6.3.7

Name	Operator	Version
purity\\/\\/fa	ge	6.4.0
purity\\/\\/fa	le	6.4.1
purity\\/\\/fa	ge	6.3.0
purity\\/\\/fa	le	6.3.7

References

support.purestorage.com/Pure_Storage_Technical_Services/Field_Bulletins/Security_Bulletins/Security_Bulletin_-_FlashArray_pgroup_Retention_Lock_SafeMode_Protection_CVE-2023-32572