Home

Description

Dell PowerFlex Manager, versions 4.6.2 and prior, contains an Open Redirect Vulnerability. An unauthenticated attacker could potentially exploit this vulnerability, leading to a targeted application user being redirected to arbitrary web URLs. The vulnerability could be leveraged by attackers to conduct phishing attacks that cause users to divulge sensitive information.

PUBLISHED Reserved 2025-02-11 | Published 2026-05-22 | Updated 2026-05-22 | Assigner dell




MEDIUM: 6.1CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Problem types

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

Product status

Default status
unaffected

Any version before IC 48.378.00
affected

Any version before IC 48.383.00
affected

Default status
unaffected

Any version before 3.7.8.0
affected

Any version before 3.8.3.0
affected

Default status
unaffected

Any version
affected

References

www.dell.com/...ltiple-third-party-component-vulnerabilities vendor-advisory

www.dell.com/...ltiple-third-party-component-vulnerabilities vendor-advisory

cve.org (CVE-2025-26483)

nvd.nist.gov (CVE-2025-26483)

Download JSON