CVE-2026-0207
HIGHSensitive Information Logging Vulnerability in FlashBlade
Title source: cnaDescription
A vulnerability exists in FlashBlade whereby sensitive information may be logged under specific conditions.
Scores
CVSS v4
8.5
EPSS
0.0002
EPSS Percentile
3.9%
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-532
Status
published
Products (3)
PureStorage/FlashBlade
4.0.0 - 4.4.8
PureStorage/FlashBlade
4.5.0 - 4.5.13
PureStorage/FlashBlade
4.6.0 - 4.6.3
Published
Apr 14, 2026
Tracked Since
Apr 15, 2026