CVE-2025-32745

Summary

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information tampering.

Affected Software

VendorProductVersion RangeStatus
DellPowerFlex Manager (Appliance)0 < IC 48.378.00affected
DellPowerFlex Manager (Appliance)0 < IC 48.383.00affected
DellPowerFlex Manager (Rack)0 < 3.7.8.0affected
DellPowerFlex Manager (Rack)0 < 3.8.3.0affected
DellPowerFlex Manager0 <= 4.6.2affected

Weaknesses

  • CWE-295: CWE-295: Improper Certificate Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References