Vulnerability Details CVE-2023-36627
A flaw exists in FlashBlade Purity whereby a user with access to an administrative account on a FlashBlade that is configured with timezone-dependent snapshot schedules can configure a timezone to prevent the schedule from functioning properly.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 38.2%
CVSS Severity
CVSS v3 Score 7.7
References
- https://support.purestorage.com/Pure_Storage_Technical_Services/Field_Bulletins/Security_Bulletins/Security_Bulletin_for_FlashBlade_Snapshot_Scheduler_CVE-2023-36627
- https://support.purestorage.com/Pure_Storage_Technical_Services/Field_Bulletins/Security_Bulletins/Security_Bulletin_for_FlashBlade_Snapshot_Scheduler_CVE-2023-36627
Products affected by CVE-2023-36627
-
cpe:2.3:a:purestorage:purity:*