Dell Powerflex Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Powerflex Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (22)
CVE-2024-37143 — CVSS 10.0 (critical): Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versions prior to RCM 3.8.1.0 (for RCM 3.8.x…
CVE-2026-35065 — CVSS 8.8 (high): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) a Missing Authentication for Critical Function vulnerability. An…
CVE-2024-37144 — CVSS 8.2 (high): Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versions prior to RCM 3.8.1.0 (for RCM 3.8.x…
CVE-2026-32804 — CVSS 8.1 (high): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with…
CVE-2025-32750 — CVSS 7.5 (high): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An…
CVE-2026-22283 — CVSS 7.5 (high): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Inclusion of Functionality from Untrusted Control Sphere vulnerability…
CVE-2026-49502 — CVSS 7.4 (high): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with…
CVE-2026-35066 — CVSS 7.1 (high): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileged attacker with…
CVE-2024-47477 — CVSS 6.5 (medium): Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote unauthenticated…
CVE-2025-26483 — CVSS 6.1 (medium): Dell PowerFlex Manager, versions 4.6.2 and prior, contains an Open Redirect Vulnerability. An unauthenticated attacker could potentially…
CVE-2026-35069 — CVSS 5.7 (medium): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL…
CVE-2026-35067 — CVSS 5.7 (medium): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileged attacker with…
CVE-2025-32751 — CVSS 5.5 (medium): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. A low privileged…
CVE-2025-32749 — CVSS 5.3 (medium): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An…
CVE-2026-40641 — CVSS 4.8 (medium): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Use of a Broken or Risky Cryptographic Algorithm vulnerability. An…
CVE-2025-36599 — CVSS 4.3 (medium): Dell PowerFlex Manager VM, versions prior to 4.6.2.1, contains an Insertion of Sensitive Information into Log File vulnerability. A low…
CVE-2026-35162 — CVSS 4.3 (medium): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Access Control vulnerability. A low privileged attacker with…
CVE-2025-32745 — CVSS 4.2 (medium): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Improper Certificate Validation vulnerability. An unauthenticated attacker with…
CVE-2025-32746 — CVSS 4.0 (medium): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. An unauthenticated…
CVE-2025-46371 — CVSS 3.6 (low): Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) a Use of a Broken or Risky Cryptographic Algorithm vulnerability in the ssh. A low…
CVE-2026-35068 — CVSS 3.5 (low): Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL…