Vulnerability Description
Dell PowerStore, version(s) 4.0.0.0, contain(s) an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the hard-coded credentials, could potentially exploit this vulnerability to gain unauthorized access based on the hardcoded account's privileges.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Powerstoreos | < 4.0.1.3-2494147 |
| Dell | Powerstore 1000T | - |
| Dell | Powerstore 1200T | - |
| Dell | Powerstore 3000T | - |
| Dell | Powerstore 3200Q | - |
| Dell | Powerstore 3200T | - |
| Dell | Powerstore 5000T | - |
| Dell | Powerstore 500T | - |
| Dell | Powerstore 5200T | - |
| Dell | Powerstore 7000T | - |
| Dell | Powerstore 9000T | - |
| Dell | Powerstore 9200T | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-36572?
CVE-2025-36572 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Dell PowerStore, version(s) 4.0.0.0, contain(s) an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the har...
How severe is CVE-2025-36572?
CVE-2025-36572 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-36572?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Powerstoreos, Dell Powerstore 1000T, Dell Powerstore 1200T, Dell Powerstore 3000T, Dell Powerstore 3200Q.