CVE-2023-32572

Summary

A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator can alter the retention lock of a pgroup and disable pgroup SafeMode protection.

Affected Software

VendorProductVersion RangeStatus
Pure StorageFlashArray Purity6.3.0 <= 6.3.7affected
Pure StorageFlashArray Purity6.4.0 <= 6.4.1affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References