CVE-2023-36628 : Security Advisory and Response

A detailed overview of CVE-2023-36628, focusing on the privilege escalation vulnerability in VASA impacting FlashArray Purity.

Understanding CVE-2023-36628

This section delves into the nature of the vulnerability and its potential impact.

What is CVE-2023-36628?

The CVE-2023-36628 relates to a flaw in VASA that enables users with access to a vSphere/ESXi VMware admin on a FlashArray to attain root access via privilege escalation.

The Impact of CVE-2023-36628

The vulnerability poses a high-risk scenario, allowing unauthorized access to critical system resources and compromising confidentiality, integrity, and availability.

Technical Details of CVE-2023-36628

Explore the technical specifics of the CVE-2023-36628 vulnerability.

Vulnerability Description

The vulnerability in VASA permits the elevation of privileges, granting unauthorized users root access on FlashArray systems.

Affected Systems and Versions

FlashArray Purity versions 6.1., 6.2., 6.3., and 6.4. are impacted by this vulnerability, up to specific versions like 6.3.11 and 6.4.5.

Exploitation Mechanism

The flaw in VASA allows attackers to exploit the vulnerability through privilege escalation, potentially leading to unauthorized system access.

Mitigation and Prevention

Discover the steps to mitigate and prevent the exploitation of CVE-2023-36628.

Immediate Steps to Take

Ensure immediate action to update affected systems to the patched versions to prevent unauthorized access and maintain system security.

Long-Term Security Practices

Incorporate stringent security practices, user access controls, and regular security audits to fortify system defenses and prevent similar vulnerabilities in the future.

Patching and Updates

Refer to the provided solution to address the CVE-2023-36628 vulnerability, which is resolved in FlashArray Purity (OE) versions 6.3.12 and later, as well as 6.4.6 and later.