Open Redirect Vulnerability in Dell PowerFlex Manager
CVE-2025-26483

6.1MEDIUM

Key Information:

Vendor: Dell
Status: Powerflex Manager (appliance); Powerflex Manager (rack); Powerflex Manager
Vendor: CVE Published:; 22 May 2026

What is CVE-2025-26483?

Dell PowerFlex Manager versions 4.6.2 and earlier are susceptible to an open redirect vulnerability. An unauthenticated attacker can exploit this weakness to redirect users to unsolicited online destinations. This could facilitate phishing attempts, where attackers trick users into providing sensitive data under the guise of legitimate communications. Immediate updates are recommended to mitigate this risk.

Affected Version(s)

PowerFlex Manager 0 <= 4.6.2

PowerFlex Manager (Appliance) 0

References

https://www.dell.com/support/kbdoc/en-us/000391568/dsa-20...

vendor-advisory

https://www.dell.com/support/kbdoc/en-us/000391392/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2026
Vulnerability Reserved
Feb 11, 2025

CVE-2025-26483 Data

JSON