Primary

Context

Pure Storage FlashBlade Improper Input Validation Authentication Vulnerability Leading to Denial-of-Service

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Pure Storage FlashBlade due to improper input validation during the authentication process. This issue could potentially disrupt system availability.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition, leading to a disruption in system availability.

Remediation

Users are advised to upgrade to FlashBlade Purity versions 4.1.11 or later, 4.3.2 or later, or to apply the January 2024 patch bundle.

Added: Jun 10, 2025, 6:54 PM

Updated: Jun 10, 2025, 6:54 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Pure Storage FlashBlade Improper Input Validation Authentication Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Pure Storage FlashBlade

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating