50 matches found
CVE-2024-0002
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array...
CVE-2024-0002
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array...
CVE-2024-0003
A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access...
CVE-2024-0001
A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active potentially allowing a malicious actor to gain elevated privileges...
CVE-2024-0004
A condition exists in FlashArray Purity whereby an user with array admin role can execute arbitrary commands remotely to escalate privilege on the array...
CVE-2024-0004
A condition exists in FlashArray Purity whereby an user with array admin role can execute arbitrary commands remotely to escalate privilege on the array...
CVE-2024-0004
CVE-2024-0004 affects Pure Storage FlashArray Purity. A condition exists where a user with the array-admin role can remotely execute arbitrary commands to escalate privileges on the array. The available documents confirm the vulnerability topic and impact (remote command execution with high/criti...
CVE-2024-0003
A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access...
CVE-2024-0003
CVE-2024-0003 affects Pure Storage FlashArray Purity. The issue: a malicious user could use a remote administrative service to create an account on the array, granting privileged access. Documented impact includes high confidentiality, integrity, and availability concerns with a network attack ve...
CVE-2024-0002
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array...
CVE-2024-0002
Technical details about CVE-2024-0002 are not publicly provided in the supplied documents. The entries describe a privilege-based remote access issue in FlashArray Purity but lack specifics on affected versions, vectors, or remediation.
CVE-2024-0002
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array...
CVE-2024-0001
FlashArray Purity contains a vulnerability where a local account intended for initial array configuration remains active, enabling potential privilege escalation. Connected sources show CVSS 3.1/10.0 (CRITICAL) with network attack vector and no user interaction; exploitation status is not detaile...
CVE-2024-0001
A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active potentially allowing a malicious actor to gain elevated privileges...
PT-2024-15289 · Pure Storage · Flasharray Purity
Name of the Vulnerable Software and Affected Versions: FlashArray Purity affected versions not specified Description: A condition exists in FlashArray Purity whereby a user with an array admin role can execute arbitrary commands remotely to escalate privilege on the array. Recommendations: At the...
PT-2024-15290 · Pure Storage · Flasharray +1
Name of the Vulnerable Software and Affected Versions: FlashArray and FlashBlade Purity affected versions not specified Description: A condition exists in FlashArray and FlashBlade Purity whereby a malicious user could execute arbitrary commands remotely through a specifically crafted SNMP...
PT-2024-15288 · Pure Storage · Flasharray Purity
Name of the Vulnerable Software and Affected Versions: FlashArray Purity affected versions not specified Description: A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access...
PT-2024-15286 · Pure Storage · Flasharray Purity
Name of the Vulnerable Software and Affected Versions: FlashArray Purity affected versions not specified Description: A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active, potentially allowing a malicious actor to gain elevated...
CVE-2023-32572
A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator can alter the retention lock of a pgroup and disable pgroup SafeMode protection...
CVE-2023-28373
A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key manager can affect the availability of data on the system including snapshots protected by SafeMode...