CVE-2026-40641
MediumCVSS 4.8Exploitation Probability (EPSS)
Low risk1th percentile — higher than 1% of all known CVEs
Summary
Dell PowerFlex Manager versions prior to 5.1.0.1 contain a vulnerability related to the use of a broken or risky cryptographic algorithm. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to information disclosure and information tampering.
Risk Assessment
The organization may be exposed to sensitive information disclosure and the possibility of data manipulation by remote attackers.
Recommendation
It is recommended to update Dell PowerFlex Manager to version 5.1.0.1 or later to mitigate this vulnerability.
Original NVD description (English source)
Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Use of a Broken or Risky Cryptographic Algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and Information tampering.

