What is CVE-2025-32747?

CVE-2025-32747 is a medium-severity vulnerability in Dell Powerflex_appliance_intelligent_catalog, classified under Incorrect Privilege Assignment. CVSS score: 5.3/10. Published 2026-05-22.

How severe is CVE-2025-32747?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Privilege escalation in Dell Powerflex_appliance_intelligent_catalog

CVE-2025-32747

Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

EPSS: 0.000 (1.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.

Affected products

Dell Powerflex_appliance_intelligent_catalog
Dell Powerflex Manager — versions 0
Dell Powerflex_manager
Dell Powerflex Manager (Appliance) — versions 0
Dell Powerflex Manager (Rack) — versions 0
Dell Powerflex_rack

Weakness classification (CWE)

CWE-266 — Incorrect Privilege Assignment

References

security_alert@emc.com (vendor-advisory, Vendor Advisory)
security_alert@emc.com (vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2025-32747?: CVE-2025-32747 is a medium-severity vulnerability in Dell Powerflex_appliance_intelligent_catalog, classified under Incorrect Privilege Assignment. CVSS score: 5.3/10. Published 2026-05-22.
How severe is CVE-2025-32747?: Medium severity. CVSS v3 base score is 5.3 out of 10.