Security Bulletin: PX Enterprise Sensitive Information Logging Vulnerability (CVE-2025-9127)

Audience
Public
Product
Portworx
Content Type
Source Type
Common Vulnerabilities and Exposures (CVE)

Security Bulletin: PX Enterprise Sensitive Information Logging Vulnerability (CVE-2025-9127)

Vulnerability Status: Final Source: Pure Storage Initial Publication Date: 2025-12-04 Last Updated: 2025-12-05 12:22:55

Summary:

A vulnerability exists in PX Enterprise whereby sensitive information may be logged under specific conditions.


CVE#: CVE-2025-9127

Vulnerability score (v3): 5.5

Severity (v3): 2 - High

Product(s): Portworx

Version First Fixed: PX Enterprise 3.1.9, 3.2.4, 3.3.1.3


References:

https://nvd.nist.gov/vuln/detail/CVE-2025-9127