5.7

CVE-2026-40639

Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerDell
Produkt Dell Edge Gateway 3000
Default Statusunaffected
Version 0
Version < 1.26.0
Status affected
HerstellerDell
Produkt Dell Edge Gateway 5000
Default Statusunaffected
Version 0
Version < 1.36.0
Status affected
HerstellerDell
Produkt DELL EMBEDDED PC 3000
Default Statusunaffected
Version 0
Version < 1.32.0
Status affected
HerstellerDell
Produkt DELL EMBEDDED PC 5000
Default Statusunaffected
Version 0
Version < 1.33.0
Status affected
HerstellerDell
Produkt Dell Precision 3630 Tower
Default Statusunaffected
Version 0
Version < 2.40.0
Status affected
HerstellerDell
Produkt Dell Precision 3930 Rack
Default Statusunaffected
Version 0
Version < 2.43.0
Status affected
HerstellerDell
Produkt Latitude 7220 Rugged Extreme
Default Statusunaffected
Version 0
Version < 1.51.0
Status affected
HerstellerDell
Produkt Latitude Rugged 5420
Default Statusunaffected
Version 0
Version < 1.42.0
Status affected
HerstellerDell
Produkt Latitude Rugged 5424
Default Statusunaffected
Version 0
Version < 1.42.0
Status affected
HerstellerDell
Produkt Latitude Rugged 7220EX
Default Statusunaffected
Version 0
Version < 1.51.0
Status affected
HerstellerDell
Produkt Latitude Rugged 7424
Default Statusunaffected
Version 0
Version < 1.42.0
Status affected
HerstellerDell
Produkt Precision 3930 Rack
Default Statusunaffected
Version 0
Version < 2.43.0
Status affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.021
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
security_alert@emc.com 5.7 0.5 5.2
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE-261 Weak Encoding for Password

Obscuring a password with a trivial encoding does not protect the password.

https://www.dell.com/support/kbdoc/en-us/000453482/dsa-2026-197