CVE-2025-32746

Summary

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to unauthorized access to sensitive information.

Affected Software

VendorProductVersion RangeStatus
DellPowerFlex Manager (Appliance)0 < IC 48.378.00affected
DellPowerFlex Manager (Appliance)0 < IC 48.383.00affected
DellPowerFlex Manager (Rack)0 < 3.7.8.0affected
DellPowerFlex Manager (Rack)0 < 3.8.3.0affected
DellPowerFlex Manager0 <= 4.6.2affected

Weaknesses

  • CWE-922: CWE-922: Insecure Storage of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References