CVE-2025-9127
MEDIUMPortworx 3.1.1-3.1.8 - Sensitive Information Exposure via Logging
Title source: llmDescription
A vulnerability exists in PX Enterprise whereby sensitive information may be logged under specific conditions.
References (1)
Core 1
Core References
Scores
CVSS v3
5.5
EPSS
0.0011
EPSS Percentile
1.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-116
Status
published
Products (3)
purestorage/portworx
2.13.12
purestorage/portworx
3.3.0
purestorage/portworx
3.1.1 - 3.1.9
Published
Dec 04, 2025
Tracked Since
Feb 18, 2026