{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2025-32747/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["PowerFlex Appliance Intelligent Catalog","PowerFlex Manager","PowerFlex Rack"],"_cs_severities":["medium"],"_cs_tags":["privilege-escalation","cve-2025-32747","dell"],"_cs_type":"advisory","_cs_vendors":["Dell"],"content_html":"\u003cp\u003eDell PowerFlex Manager versions 4.6.2 and earlier are vulnerable to an Incorrect Privilege Assignment issue (CVE-2025-32747). This vulnerability allows a low-privileged attacker with local access to potentially elevate their privileges within the system. The vulnerability exists within the Dell PowerFlex Appliance Intelligent Catalog, PowerFlex Manager, and PowerFlex Rack products. Exploitation requires local access, limiting the attack surface, but successful exploitation leads to a complete compromise of the affected system. Defenders need to ensure timely patching of these products to mitigate the risk.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAttacker gains initial low-privileged local access to the PowerFlex Manager system.\u003c/li\u003e\n\u003cli\u003eAttacker identifies the presence of CVE-2025-32747.\u003c/li\u003e\n\u003cli\u003eAttacker crafts a malicious request to an affected endpoint within the PowerFlex Manager.\u003c/li\u003e\n\u003cli\u003eThe request exploits the incorrect privilege assignment, bypassing access controls.\u003c/li\u003e\n\u003cli\u003eThe system improperly processes the request due to the privilege assignment vulnerability.\u003c/li\u003e\n\u003cli\u003eAttacker leverages elevated privileges to modify system configurations.\u003c/li\u003e\n\u003cli\u003eAttacker escalates privileges to administrator level.\u003c/li\u003e\n\u003cli\u003eAttacker gains complete control over the PowerFlex Manager system.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2025-32747 allows a low-privileged attacker to elevate their privileges to administrator level on the Dell PowerFlex Manager. This can lead to unauthorized access to sensitive data, modification of critical system settings, and potential compromise of the entire infrastructure managed by PowerFlex. The impact is high due to the potential for complete system takeover.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply the security updates provided by Dell to address CVE-2025-32747 on affected PowerFlex Manager, PowerFlex Appliance Intelligent Catalog and PowerFlex Rack installations (see references).\u003c/li\u003e\n\u003cli\u003eImplement the Sigma rule \u003ccode\u003eDetect CVE-2025-32747 Attempt — Suspicious PowerFlex Manager Privilege Escalation\u003c/code\u003e to detect potential exploitation attempts on your systems.\u003c/li\u003e\n\u003cli\u003eMonitor logs for suspicious activity indicative of local privilege escalation attempts.\u003c/li\u003e\n\u003cli\u003eReview and enforce strict access control policies to limit the potential impact of compromised low-privileged accounts.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-05-26T13:31:13Z","date_published":"2026-05-26T13:31:13Z","id":"https://feed.craftedsignal.io/briefs/2026-05-cve-2025-32747-dell-privesc/","summary":"Dell PowerFlex Manager versions 4.6.2 and earlier contain an Incorrect Privilege Assignment vulnerability (CVE-2025-32747) that allows a low-privileged attacker with local access to elevate privileges.","title":"CVE-2025-32747: Dell PowerFlex Manager Incorrect Privilege Assignment Vulnerability","url":"https://feed.craftedsignal.io/briefs/2026-05-cve-2025-32747-dell-privesc/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2025-32747","version":"https://jsonfeed.org/version/1.1"}