Vulnerability Details CVE-2024-47477
Dell PowerFlex Manager, versions prior to 4.5.1.1, contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leading to man-in-the-middle attack in tandem with DNS cache poisoning.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 2.5%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2024-47477
-
cpe:2.3:a:dell:powerflex_manager:4.5.0
-
cpe:2.3:a:dell:powerflex_manager:4.5.1