The vulnerability of the Pure Storage Purity software for managing flash drives is related to deficiencies in access control, allowing attackers to increase their privileges.

The vulnerability of the Pure Storage Purity flash storage controller software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker operating remotely to enhance their privileges...

PT-2023-5848 · Pure Storage +1 · Flasharray +3

Name of the Vulnerable Software and Affected Versions: Pure Storage VASA affected versions not specified Description: A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a FlashArray to gain root access through privilege escalation. The issue is related to...

Pure Storage Purity Cross-Site Scripting Vulnerability

Pure Storage Purity is a storage appliance from the American company Pure Storage. A cross-site scripting vulnerability exists in Pure Storage Purity version 4.7.5. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of the 'host' parameter...

CVE-2017-7352

Stored Cross-site scripting XSS vulnerability in Pure Storage Purity 4.7.5 allows remote authenticated users to inject arbitrary web script or HTML via the "host" parameter on the 'System Configuration SNMP Add SNMP Trap Manager' screen...

CVE-2017-7352

The CVE-2017-7352 entry describes a Stored Cross-Site Scripting (XSS) vulnerability in Pure Storage Purity 4.7.5. The issue is triggered by the host parameter on the System > Configuration > SNMP > Add SNMP Trap Manager screen, allowing remote authenticated users to inject arbitrary web ...