Vulnerabilities > CVE-2024-0003 - Unspecified vulnerability in Purestorage Purity//Fa

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

purestorage

NVD

Published: 2024-09-23

Updated: 2024-09-27

Summary

A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access.

Vulnerable Configurations

Part	Description	Count
Application	Purestorage Purestorage Purity//Fa 6.4.0 Purestorage Purity//Fa 6.4.1 Purestorage Purity//Fa 6.4.2 Purestorage Purity//Fa 6.4.3 Purestorage Purity//Fa 6.4.4 Purestorage Purity//Fa 6.4.5 Purestorage Purity//Fa 6.4.7 Purestorage Purity//Fa 6.4.9 Purestorage Purity//Fa 6.4.10 Purestorage Purity//Fa 6.3.0 Purestorage Purity//Fa 6.3.1 Purestorage Purity//Fa 6.3.2 Purestorage Purity//Fa 6.3.3 Purestorage Purity//Fa 6.3.4 Purestorage Purity//Fa 6.3.5 Purestorage Purity//Fa 6.3.6 Purestorage Purity//Fa 6.3.7 Purestorage Purity//Fa 6.3.8 Purestorage Purity//Fa 6.3.9 Purestorage Purity//Fa 6.3.10 Purestorage Purity//Fa 6.3.11 Purestorage Purity//Fa 6.3.12 Purestorage Purity//Fa 6.3.13 Purestorage Purity//Fa 6.3.14 Purestorage Purity//Fa 6.5.0 Purestorage Purity//Fa 6.2.0 Purestorage Purity//Fa 6.2.1 Purestorage Purity//Fa 6.2.2 Purestorage Purity//Fa 6.2.3 Purestorage Purity//Fa 6.2.4 Purestorage Purity//Fa 6.2.5 Purestorage Purity//Fa 6.2.6 Purestorage Purity//Fa 6.2.7 Purestorage Purity//Fa 6.2.8 Purestorage Purity//Fa 6.2.9 Purestorage Purity//Fa 6.2.10 Purestorage Purity//Fa 6.2.11 Purestorage Purity//Fa 6.2.12 Purestorage Purity//Fa 6.2.13 Purestorage Purity//Fa 6.2.14 Purestorage Purity//Fa 6.2.15 Purestorage Purity//Fa 6.2.16 Purestorage Purity//Fa 6.2.17 Purestorage Purity//Fa 6.1.8 Purestorage Purity//Fa 6.1.9 Purestorage Purity//Fa 6.1.10 Purestorage Purity//Fa 6.1.11 Purestorage Purity//Fa 6.1.12 Purestorage Purity//Fa 6.1.13 Purestorage Purity//Fa 6.1.14 Purestorage Purity//Fa 6.1.15 Purestorage Purity//Fa 6.1.16 Purestorage Purity//Fa 6.1.17 Purestorage Purity//Fa 6.1.18 Purestorage Purity//Fa 6.1.19 Purestorage Purity//Fa 6.1.20 Purestorage Purity//Fa 6.1.21 Purestorage Purity//Fa 6.1.22 Purestorage Purity//Fa 6.1.23 Purestorage Purity//Fa 6.1.24 Purestorage Purity//Fa 6.1.25 Purestorage Purity//Fa 6.0.7 Purestorage Purity//Fa 6.0.8 Purestorage Purity//Fa 6.0.9 Purestorage Purity//Fa 5.3.17 Purestorage Purity//Fa 5.3.18 Purestorage Purity//Fa 5.3.19 Purestorage Purity//Fa 5.3.20 Purestorage Purity//Fa 5.3.21	69

References

https://purestorage.com/security