Metrics
Affected Vendors & Products
Solution
This vulnerability can be fixed either by applying a patch or upgrading to an unaffected Purity version. This issue is resolved in the following FlashBlade Purity versions: * Purity//FB 3.3.11 or later * Purity//FB 4.1.9 or later * Purity//FB 4.2.3 or later * Purity//FB 4.3.0 or later * Purity//FB 4.4.0 or later
Workaround
No workaround given by the vendor.
Thu, 10 Apr 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Purestorage
Purestorage flashblade |
|
CPEs | cpe:2.3:a:purestorage:flashblade:*:*:*:*:*:*:*:* | |
Vendors & Products |
Purestorage
Purestorage flashblade |
|
Metrics |
ssvc
|
Thu, 10 Apr 2025 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A flaw exists in Purity//FB whereby a local account is permitted to authenticate to the management interface using an unintended method that allows an attacker to gain privileged access to the array. | A flaw exists in FlashBlade whereby a local account is permitted to authenticate to the management interface using an unintended method that allows an attacker to gain privileged access to the array. |
References |
|

Status: PUBLISHED
Assigner: PureStorage
Published:
Updated: 2025-04-10T14:18:03.534Z
Reserved: 2023-09-14T20:57:21.683Z
Link: CVE-2023-4976

Updated: 2024-08-02T07:44:53.148Z

Status : Awaiting Analysis
Published: 2024-07-17T16:15:03.233
Modified: 2025-04-10T15:16:01.880
Link: CVE-2023-4976

No data.

No data.