QSearchQSearch

CVE-2026-6444

A flaw exists in the FlashArray Purity management interface where an authenticated low-privileged user may, under specific conditions, ac...

Published: 2026-06-09 · Last updated: 2026-06-09

Severity and scoring

CWE
CWE-639

Description

A flaw exists in the FlashArray Purity management interface where an authenticated low-privileged user may, under specific conditions, access functionality beyond their assigned privileges.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-53675 BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the friends REST API that allows any authenticated attack... (4.3 MEDIUM)
  • CVE-2026-53673 BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the messages REST API that allows authenticated attackers... (8.1 HIGH)
  • CVE-2026-44083 An authorization bypass through user-controlled key vulnerability has been reported to affect QuMagie
  • CVE-2026-9185 The 6Storage Rentals plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and inc... (7.5 HIGH)
  • CVE-2026-49141 WACRM prior to commit 73041bf contain an authorization bypass vulnerability in the automation engine that allows authenticated attackers ... (7.1 HIGH)