Insecure Storage of Sensitive Information in Dell PowerFlex Manager
CVE-2025-32751

5.5MEDIUM

Key Information:

Vendor: Dell
Status: Powerflex Manager (appliance); Powerflex Manager (rack); Powerflex Manager
Vendor: CVE Published:; 22 May 2026

What is CVE-2025-32751?

Dell PowerFlex Manager versions 4.6.2 and prior exhibit a vulnerability that compromises the security of sensitive information through insecure storage practices. A low-privileged attacker with local access to the system may exploit this flaw, potentially gaining unauthorized access to sensitive data, which could lead to further security breaches or data exposure. Organizations utilizing affected versions should prioritize applying patches and implementing security measures to mitigate the risk.

Affected Version(s)

PowerFlex Manager 0 <= 4.6.2

PowerFlex Manager (Appliance) 0

References

https://www.dell.com/support/kbdoc/en-us/000391568/dsa-20...

vendor-advisory

https://www.dell.com/support/kbdoc/en-us/000391392/dsa-20...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 22, 2026
Vulnerability Reserved
Apr 10, 2025

CVE-2025-32751 Data

JSON