FlashBlade Object Store Protocol
CVE-2023-31042

7.7HIGH

Key Information:

Vendor: Pure Storage
Status: Flashblade Purity
Vendor: CVE Published:; 2 October 2023

🔔 Create Pure Storage Vulnerability Alert

What is CVE-2023-31042?

A vulnerability has been identified in the Pure Storage FlashBlade that allows an authenticated user with access to the object store protocol to disrupt the availability of the system's data access and replication protocols. This flaw can potentially affect system performance, leading to interruptions in service and data retrieval operations, which may impact overall data management and availability.

Affected Version(s)

FlashBlade Purity 3.3.6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.1.0, 4.1.1

References

https://support.purestorage.com/Employee_Handbooks/Techni...

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 2, 2023
Vulnerability Reserved
Apr 23, 2023