Lucene search
K

51 matches found

CVE
CVE
added 2022/06/22 2:22 p.m.69 views

CVE-2022-32552

CVE-2022-32552 affects Pure Storage FlashArray (Purity//FA) versions 5.2.x and prior through 6.2.3, and FlashBlade (Purity//FB) 3.0.x through 3.3.0. The root cause is a privilege-escalation vulnerability caused by manipulation of Python environment variables, which an authenticated user can explo...

9CVSS8.8AI score0.01072EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/22 2:7 p.m.16 views

CVE-2022-32553

Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB 3.3.0, 3.2.0 - 3.2.4, 3.1.0 - 3.1.12, 3.0.x and prior Purity//FB releases are vulnerable t...

9.1AI score0.01072EPSS
Exploits0References1
CVE
CVE
added 2022/06/22 2:7 p.m.66 views

CVE-2022-32553

CVE-2022-32553 affects Pure Storage FlashArray (Purity//FA) versions 5.2.x and prior up to 6.2.3, and FlashBlade (Purity//FB) up to 3.3.0; vulnerability is privilege escalation via manipulation of environment variables. A logged-in user can escape a restricted shell to an unrestricted shell with ...

9CVSS8.8AI score0.01072EPSS
Exploits0References1Affected Software1
Veeam
Veeam
added 2021/03/15 12:0 a.m.22 views

Release Information for Everpure FlashArray Plug-In for Veeam Backup & Replication

This plug-in leverages the Veeam Universal Storage API, which enables storage OEMs to allow Veeam Backup & Replication integration to the arrays for backup and replication jobs. Requirements Before installing Everpure FlashArray Plug-In v2.2.331, ensure that you are running Veeam Backup &...

5.7AI score
Exploits0Affected Software1
Veeam
Veeam
added 2019/10/16 12:0 a.m.18 views

How to configure Veeam B&R to work with replicated volume snapshots on the target Pure Storage array

Replicated volume snapshots on the target Pure Storage array are not displayed in the storage system hierarchy in the Veeam Backup & Replication console...

0.8AI score
Exploits0
CNVD
CNVD
added 2017/10/16 12:0 a.m.6 views

Pure Storage Purity Cross-Site Scripting Vulnerability

Pure Storage Purity is a storage appliance from the American company Pure Storage. A cross-site scripting vulnerability exists in Pure Storage Purity version 4.7.5. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of the 'host' parameter...

5.4CVSS5.3AI score0.00595EPSS
Exploits1References1
NVD
NVD
added 2017/10/11 6:29 a.m.12 views

CVE-2017-7352

Stored Cross-site scripting XSS vulnerability in Pure Storage Purity 4.7.5 allows remote authenticated users to inject arbitrary web script or HTML via the "host" parameter on the 'System Configuration SNMP Add SNMP Trap Manager' screen...

5.4CVSS5.1AI score0.00595EPSS
Exploits1References1
Prion
Prion
added 2017/10/11 6:29 a.m.12 views

Cross site scripting

Stored Cross-site scripting XSS vulnerability in Pure Storage Purity 4.7.5 allows remote authenticated users to inject arbitrary web script or HTML via the "host" parameter on the 'System Configuration SNMP Add SNMP Trap Manager' screen...

3.5CVSS5AI score0.00595EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/10/11 6:29 a.m.3 views

CVE-2017-7352

Stored Cross-site scripting XSS vulnerability in Pure Storage Purity 4.7.5 allows remote authenticated users to inject arbitrary web script or HTML via the "host" parameter on the 'System Configuration SNMP Add SNMP Trap Manager' screen...

5.4CVSS5.9AI score0.00595EPSS
Exploits1References1
CVE
CVE
added 2017/10/11 6:0 a.m.43 views

CVE-2017-7352

The CVE-2017-7352 entry describes a Stored Cross-Site Scripting (XSS) vulnerability in Pure Storage Purity 4.7.5. The issue is triggered by the host parameter on the System > Configuration > SNMP > Add SNMP Trap Manager screen, allowing remote authenticated users to inject arbitrary web ...

5.4CVSS5AI score0.00595EPSS
Exploits1References1Affected Software1
Openbugbounty
Openbugbounty
added 2016/05/11 10:57 p.m.12 views

blog.purestorage.com XSS vulnerability

Open Bug Bounty ID: OBB-152017 Description| Value ---|--- Affected Website:| blog.purestorage.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder