CVE-2025-0052

Improper input validation performed during the authentication process of FlashBlade could lead to a system Denial of Service.

CVSS

No CVSS.

References

Link	Resource
https://support.purestorage.com/bundle/m_security_bulletins/page/Pure_Security/topics/concept/c_security_bulletins.html

Configurations

No configuration.

History

12 Jun 2025, 16:06

Type	Values Removed	Values Added
Summary		(es) Una validación de entrada incorrecta realizada durante el proceso de autenticación de FlashBlade podría provocar una denegación de servicio del sistema.

10 Jun 2025, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-10 18:15

Updated : 2025-06-12 16:06

NVD link : CVE-2025-0052

Mitre link : CVE-2025-0052

CVE.ORG link : CVE-2025-0052

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2025-0052", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "psirt@purestorage.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "LOW", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-06-10T18:15:30.180", "references": [{"url": "https://support.purestorage.com/bundle/m_security_bulletins/page/Pure_Security/topics/concept/c_security_bulletins.html", "source": "psirt@purestorage.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "psirt@purestorage.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Improper input validation performed during the authentication process of FlashBlade could lead to a system Denial of Service."}, {"lang": "es", "value": "Una validaci\u00f3n de entrada incorrecta realizada durante el proceso de autenticaci\u00f3n de FlashBlade podr\u00eda provocar una denegaci\u00f3n de servicio del sistema."}], "lastModified": "2025-06-12T16:06:29.520", "sourceIdentifier": "psirt@purestorage.com"}

CVE-2025-0052

JSON object

Attach tags to CVE-2025-0052

Attach tags to `CVE-2025-0052`