CVEFinder.io

CVE-2025-26483

🔶 medium
🔍 Scan for this CVE
Summary

Dell PowerFlex Manager, versions 4.6.2 and prior, contains an Open Redirect Vulnerability. An unauthenticated attacker could potentially exploit this vulnerability, leading to a targeted application user being redirected to arbitrary web URLs. The vulnerability could be leveraged by attackers to conduct phishing attacks that cause users to divulge sensitive information.

CVSS Score
6.1
Medium
EPSS Score
0.1
Exploit Probability
Published Date
2026-05-22
First Seen: 2026-05-27
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 38.8% of all 330,193 vulnerabilities in our database.

#202,011
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: May 22, 2026
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
SSVC data provided by CISA
Last Modified 2026-05-22
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CWE IDs (Weakness Types)
CWE-601

📦 Affected Products 2

Vendor Product Status Affected Versions
dell powerflex_manager Affected
< 4.6.2
dell powerflex_appliance_intelligent_catalog Affected
< 48.383.00

🔗 References 2

https://www.dell.com/support/kbdoc/en-us/000391392/d...
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000391568/d...
Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2024-47477 🔶 medium 6.5 0.1 Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote un... 2026-06-17
CVE-2026-22283 ⚠️ high 7.5 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Inclusion of Functionality from Untrusted Control Sph... 2026-06-17
CVE-2026-32804 ⚠️ high 8.1 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Authentication vulnerability. An unauthentic... 2026-06-17
CVE-2026-35065 ⚠️ high 8.8 0.3 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) a Missing Authentication for Critical Function vulnerabi... 2026-06-17
CVE-2026-35066 ⚠️ high 7.1 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileg... 2026-06-17
CVE-2026-35067 🔶 medium 5.7 0.2 Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileg... 2026-06-17
These CVEs affect the same products