7.5
CVE-2025-32750
- EPSS 0.35%
- Veröffentlicht 20.05.2026 14:30:23
- Zuletzt bearbeitet 02.06.2026 18:46:08
- Quelle security_alert@emc.com
- CVE-Watchlists
- Unerledigt
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information exposure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dell ≫ Powerflex Appliance Intelligent Catalog Version < 48.383.00
Dell ≫ Powerflex Manager Version <= 4.6.2
Dell ≫ Powerflex Rack Version < 3.7.8.0
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.35% | 0.266 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security_alert@emc.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-548 Exposure of Information Through Directory Listing
The product inappropriately exposes a directory listing with an index of all the resources located inside of the directory.
https://www.dell.com/support/kbdoc/en-us/000391568/dsa-2025-435-security-update-for-dell-powerflex-rack-multiple-third-party-component-vulnerabilities
https://www.dell.com/support/kbdoc/en-us/000391392/dsa-2025-434-security-update-for-dell-powerflex-appliance-multiple-third-party-component-vulnerabilities