CVE-2026-40639
CVSS Score
5.7
EPSS Score
0.0%
EPSS Percentile
0th
Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.
| CWE | CWE-261 |
| Vendor | dell |
| Product | dell edge gateway 3000 |
| Published | Jun 9, 2026 |
| Last Updated | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for dell dell edge gateway 3000
Be the first to know when new medium vulnerabilities affecting dell dell edge gateway 3000 are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Attack Vector
Physical
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Affected Versions
Dell / Dell Edge Gateway 3000
0 < 1.26.0
Dell / Dell Edge Gateway 5000
0 < 1.36.0
Dell / DELL EMBEDDED PC 3000
0 < 1.32.0
Dell / DELL EMBEDDED PC 5000
0 < 1.33.0
Dell / Dell Precision 3630 Tower
0 < 2.40.0
Dell / Dell Precision 3930 Rack
0 < 2.43.0
Dell / Latitude 7220 Rugged Extreme
0 < 1.51.0
Dell / Latitude Rugged 5420
0 < 1.42.0
Dell / Latitude Rugged 5424
0 < 1.42.0
Dell / Latitude Rugged 7220EX
0 < 1.51.0
Dell / Latitude Rugged 7424
0 < 1.42.0
Dell / Precision 3930 Rack
0 < 2.43.0
References
Credits
Dell would like to thank Darren McDonald from AmberWolf and Craig S. Blackie from MDSec for reporting this issue.