3.6
CVE-2025-46371
- EPSS 0.07%
- Veröffentlicht 22.05.2026 13:43:18
- Zuletzt bearbeitet 22.05.2026 13:43:18
- Quelle c550e75a-17ff-4988-97f0-544cde
- CVE-Watchlists
- Unerledigt
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) a Use of a Broken or Risky Cryptographic Algorithm vulnerability in the ssh. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Protection mechanism bypass.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerDell
≫
Produkt
PowerFlex Manager (Appliance)
Default Statusunaffected
Version
0
Version <
IC 48.378.00
Status
affected
Version
0
Version <
IC 48.383.00
Status
affected
HerstellerDell
≫
Produkt
PowerFlex Manager (Rack)
Default Statusunaffected
Version
0
Version <
3.7.8.0
Status
affected
Version
0
Version <
3.8.3.0
Status
affected
HerstellerDell
≫
Produkt
PowerFlex Manager
Default Statusunaffected
Version <=
4.6.2
Version
0
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| c550e75a-17ff-4988-97f0-544cde3820fe | 3.6 | 0 | 0 |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
|
https://www.dell.com/support/kbdoc/en-us/000391568/dsa-2025-435-security-update-for-dell-powerflex-rack-multiple-third-party-component-vulnerabilities
https://www.dell.com/support/kbdoc/en-us/000391392/dsa-2025-434-security-update-for-dell-powerflex-appliance-multiple-third-party-component-vulnerabilities