← back
CVE-2023-28373

FlashArray SafeMode Immutable Vulnerability

CVSS 4.4 MEDIUMEPSS 0.4%
A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key manager can affect the availability of data on the system including snapshots protected by SafeMode.
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Affected products
Pure Storage · FlashArray Purity

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.purestorage.com/Employee_Handbooks/Technical_Services/PSIRT/Security_Bulletin_for_FlashArray_SafeMode_Immutable_Vulnerability_CVE-2023-28373