CVE Catalog

CVE-2026-40639

MediumCVSS 5.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.02%

5th percentile - higher than 5% of all known CVEs

Summary

The Dell Client Platform BIOS contains a weak encoding for passwords, which could be exploited by an unauthenticated attacker with physical access. Exploiting this vulnerability may lead to elevation of privileges.

Risk Assessment

The organization may be exposed to unauthorized access to systems, potentially leading to serious security breaches.

Recommendation

It is recommended to update the BIOS to the latest version and restrict physical access to devices.

Original NVD description (English source)

Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS