5.7
CVE-2026-40639
- EPSS 0.12%
- Veröffentlicht 09.06.2026 18:04:53
- Zuletzt bearbeitet 09.06.2026 19:30:24
- Quelle security_alert@emc.com
- CVE-Watchlists
- Unerledigt
Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerDell
≫
Produkt
Dell Edge Gateway 3000
Default Statusunaffected
Version
0
Version <
1.26.0
Status
affected
HerstellerDell
≫
Produkt
Dell Edge Gateway 5000
Default Statusunaffected
Version
0
Version <
1.36.0
Status
affected
HerstellerDell
≫
Produkt
DELL EMBEDDED PC 3000
Default Statusunaffected
Version
0
Version <
1.32.0
Status
affected
HerstellerDell
≫
Produkt
DELL EMBEDDED PC 5000
Default Statusunaffected
Version
0
Version <
1.33.0
Status
affected
HerstellerDell
≫
Produkt
Dell Precision 3630 Tower
Default Statusunaffected
Version
0
Version <
2.40.0
Status
affected
HerstellerDell
≫
Produkt
Dell Precision 3930 Rack
Default Statusunaffected
Version
0
Version <
2.43.0
Status
affected
HerstellerDell
≫
Produkt
Latitude 7220 Rugged Extreme
Default Statusunaffected
Version
0
Version <
1.51.0
Status
affected
HerstellerDell
≫
Produkt
Latitude Rugged 5420
Default Statusunaffected
Version
0
Version <
1.42.0
Status
affected
HerstellerDell
≫
Produkt
Latitude Rugged 5424
Default Statusunaffected
Version
0
Version <
1.42.0
Status
affected
HerstellerDell
≫
Produkt
Latitude Rugged 7220EX
Default Statusunaffected
Version
0
Version <
1.51.0
Status
affected
HerstellerDell
≫
Produkt
Latitude Rugged 7424
Default Statusunaffected
Version
0
Version <
1.42.0
Status
affected
HerstellerDell
≫
Produkt
Precision 3930 Rack
Default Statusunaffected
Version
0
Version <
2.43.0
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.021 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security_alert@emc.com | 5.7 | 0.5 | 5.2 |
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
|
CWE-261 Weak Encoding for Password
Obscuring a password with a trivial encoding does not protect the password.
https://www.dell.com/support/kbdoc/en-us/000453482/dsa-2026-197