4.4
CVE-2023-28373
- EPSS 0.43%
- Veröffentlicht 03.10.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 07:54:56
- Quelle psirt@purestorage.com
- CVE-Watchlists
- Unerledigt
LoginFlashArray SafeMode Immutable Vulnerability
A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key manager can affect the availability of data on the system including snapshots protected by SafeMode.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Purestorage ≫ Purity//fa Version >= 6.1.0 <= 6.1.22
Purestorage ≫ Purity//fa Version >= 6.2.0 <= 6.2.15
Purestorage ≫ Purity//fa Version >= 6.3.0 <= 6.3.6
Purestorage ≫ Purity//fa Version6.4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.345 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.7 | 1.2 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
|
| psirt@purestorage.com | 4.4 | 0.7 | 3.6 |
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
|
https://support.purestorage.com/Employee_Handbooks/Technical_Services/PSIRT/Security_Bulletin_for_FlashArray_SafeMode_Immutable_Vulnerability_CVE-2023-28373