CVEFinder.io

CVE-2024-47477

🔶 medium
🔍 Scan for this CVE
Summary

Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leading to man-in-the-middle attack in tandem with DNS cache poisoning.

CVSS Score
6.5
Medium
EPSS Score
0.1
Exploit Probability
Published Date
2026-06-17
First Seen: 2026-06-25
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 47.8% of all 330,193 vulnerabilities in our database.

#172,448
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: Jun 17, 2026
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
YES
Can be exploited automatically
💥 Technical Impact
Partial
Limited system impact
SSVC data provided by CISA
Last Modified 2026-06-22
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CWE IDs (Weakness Types)
CWE-295

📦 Affected Products 1

Vendor Product Status Affected Versions
dell powerflex_manager Affected
< 4.5.1.1

🔗 References 1

https://www.dell.com/support/kbdoc/en-us/000477538/d...
Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-22283 ⚠️ high 7.5 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Inclusion of Functionality from Untrusted Control Sph... 2026-06-17
CVE-2026-32804 ⚠️ high 8.1 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Authentication vulnerability. An unauthentic... 2026-06-17
CVE-2026-35065 ⚠️ high 8.8 0.3 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) a Missing Authentication for Critical Function vulnerabi... 2026-06-17
CVE-2026-35066 ⚠️ high 7.1 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileg... 2026-06-17
CVE-2026-35067 🔶 medium 5.7 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileg... 2026-06-17
CVE-2026-35162 🔶 medium 4.3 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileg... 2026-06-17
These CVEs affect the same products