CVE-2025-32750
7.5 HIGHDell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability
Published: 2026-05-20 · Last updated: 2026-06-02
Severity and scoring
- CVSS
- 7.5 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-548
Affected products
| Vendor | Product |
|---|---|
| dell | powerflex_appliance_intelligent_catalog, powerflex_manager, powerflex_rack |
Description
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information exposure.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2025-32750
- [Vendor advisory]https://www.dell.com/support/kbdoc/en-us/000391392/dsa-2025-434-security-update-for-dell-powerflex-appliance-multiple-third-party-component-vulnerabilities
- [Vendor advisory]https://www.dell.com/support/kbdoc/en-us/000391568/dsa-2025-435-security-update-for-dell-powerflex-rack-multiple-third-party-component-vulnerabilities
Related CVEs
Same vendor
- CVE-2026-40715 — Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access Control vulnerability (7.8 HIGH)
- CVE-2026-40713 — Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access control vulnerability (6.1 MEDIUM)
- CVE-2022-34363 — Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX app... (6.5 MEDIUM)
- CVE-2026-28264 — Dell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability (3.3 LOW)
- CVE-2026-23862 — Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Elements used in a Command ('Command ... (7.8 HIGH)
Same CWE
- CVE-2026-50233 — Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI ... (5.3 MEDIUM)