Vulnerability Details CVE-2023-32572
A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator can alter the retention lock of a pgroup and disable pgroup SafeMode protection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.8%
CVSS Severity
CVSS v3 Score 6.5
References
- https://https://support.purestorage.com/Pure_Storage_Technical_Services/Field_Bulletins/Security_Bulletins/Security_Bulletin_-_FlashArray_pgroup_Retention_Lock_SafeMode_Protection_CVE-2023-32572
- https://https://support.purestorage.com/Pure_Storage_Technical_Services/Field_Bulletins/Security_Bulletins/Security_Bulletin_-_FlashArray_pgroup_Retention_Lock_SafeMode_Protection_CVE-2023-32572
Products affected by CVE-2023-32572
-
cpe:2.3:a:purestorage:purity//fa:6.3.0
-
cpe:2.3:a:purestorage:purity//fa:6.3.1
-
cpe:2.3:a:purestorage:purity//fa:6.3.2
-
cpe:2.3:a:purestorage:purity//fa:6.3.3
-
cpe:2.3:a:purestorage:purity//fa:6.3.4
-
cpe:2.3:a:purestorage:purity//fa:6.3.5
-
cpe:2.3:a:purestorage:purity//fa:6.3.6
-
cpe:2.3:a:purestorage:purity//fa:6.3.7
-
cpe:2.3:a:purestorage:purity//fa:6.4.0
-
cpe:2.3:a:purestorage:purity//fa:6.4.1