PT-2023-5848 · Pure Storage +1 · Flasharray +3

Name of the Vulnerable Software and Affected Versions: Pure Storage VASA affected versions not specified Description: A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a FlashArray to gain root access through privilege escalation. The issue is related to...

Pure Storage Purity Cross-Site Scripting Vulnerability

Pure Storage Purity is a storage appliance from the American company Pure Storage. A cross-site scripting vulnerability exists in Pure Storage Purity version 4.7.5. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of the 'host' parameter...

CVE-2017-7352

Stored Cross-site scripting XSS vulnerability in Pure Storage Purity 4.7.5 allows remote authenticated users to inject arbitrary web script or HTML via the "host" parameter on the 'System Configuration SNMP Add SNMP Trap Manager' screen...

CVE-2017-7352

The CVE-2017-7352 entry describes a Stored Cross-Site Scripting (XSS) vulnerability in Pure Storage Purity 4.7.5. The issue is triggered by the host parameter on the System > Configuration > SNMP > Add SNMP Trap Manager screen, allowing remote authenticated users to inject arbitrary web ...