CVE-2025-26483
HIGH WAF: Medium
CVSS 8.2
Published: 2026-05-22
CWE-601
Dell PowerFlex Manager, versions 4.6.2 and prior, contains an Open Redirect Vulnerability. An unauthenticated attacker could potentially exploit this vulnerability, leading to a targeted application user being redirected to arbitrary web URLs. The vulnerability could be leveraged by attackers to conduct phishing attacks that cause users to divulge sensitive information.
WAF Coverage Analysis
Open Redirect
Medium WAF Coverage
OWASP: A01:2021 Broken Access Control
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| dell | powerflex_appliance_intelligent_catalog | up to 48.383.00 |
| dell | powerflex_manager | up to 4.6.2 |
| dell | powerflex_rack | up to 3.7.8.0 |
References
- www.dell.com (Vendor Advisory)
- www.dell.com (Vendor Advisory)