DSA-2026-197: Security Update for Dell Client Platform BIOS for a Weak Encoding for Password Vulnerability

Summary: Dell Client Platform BIOS remediation is available for a Weak Encoding for Password vulnerability that could be exploited by malicious users to compromise the affected system.

Affected Products & Remediation

Affected Products

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.

Check out other resources

Impact

Medium

Details

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2026-40639	Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.	5.7	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Proprietary Code CVEs	Description	CVSS Base Score	CVSS Vector String
CVE-2026-40639	Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges.	5.7	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product	Software/Firmware	Affected Version	Remediated Version	Release Date (MM/DD/YYYY)	Link
Dell Edge Gateway 3000	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
Dell Edge Gateway 5000	BIOS	Versions prior to 1.36.0	Version 1.36.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
DELL EMBEDDED PC 3000	BIOS	Versions prior to 1.32.0	Version 1.32.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
DELL EMBEDDED PC 5000	BIOS	Versions prior to 1.33.0	Version 1.33.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
Dell Precision 3630 Tower	BIOS	Versions prior to 2.40.0	Version 2.40.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates
Dell Precision 3930 Rack	BIOS	Versions prior to 2.43.0	Version 2.43.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates
Latitude 7220 Rugged Extreme	BIOS	Versions prior to 1.51.0	Version 1.51.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 5420	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 5424	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 7220EX	BIOS	Versions prior to 1.51.0	Version 1.51.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 7424	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Precision 3930 Rack	BIOS	Versions prior to 2.43.0	Version 2.43.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates

Product	Software/Firmware	Affected Version	Remediated Version	Release Date (MM/DD/YYYY)	Link
Dell Edge Gateway 3000	BIOS	Versions prior to 1.26.0	Version 1.26.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
Dell Edge Gateway 5000	BIOS	Versions prior to 1.36.0	Version 1.36.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
DELL EMBEDDED PC 3000	BIOS	Versions prior to 1.32.0	Version 1.32.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
DELL EMBEDDED PC 5000	BIOS	Versions prior to 1.33.0	Version 1.33.0 or later	06/09/2026	Go to the Drivers & Downloads site for updates
Dell Precision 3630 Tower	BIOS	Versions prior to 2.40.0	Version 2.40.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates
Dell Precision 3930 Rack	BIOS	Versions prior to 2.43.0	Version 2.43.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates
Latitude 7220 Rugged Extreme	BIOS	Versions prior to 1.51.0	Version 1.51.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 5420	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 5424	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 7220EX	BIOS	Versions prior to 1.51.0	Version 1.51.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Latitude Rugged 7424	BIOS	Versions prior to 1.42.0	Version 1.42.0 or later	06/08/2026	Go to the Drivers & Downloads site for updates
Precision 3930 Rack	BIOS	Versions prior to 2.43.0	Version 2.43.0 or later	06/04/2026	Go to the Drivers & Downloads site for updates

Revision History

Revision	Date	Description
1.0	2026-06-09	Initial Release

Acknowledgements

Dell would like to thank Darren McDonald from AmberWolf and Craig S. Blackie from MDSec for reporting this issue.

Related Information

Legal Disclaimer

Affected Products

Dell Edge Gateway 3000 Series, Dell Edge Gateway 5000, Dell Embedded Box PC 3000, Dell Embedded Box PC 5000, Latitude 7220EX Rugged Extreme Tablet, Latitude 7220 Rugged Extreme Tablet, Latitude 5420 Rugged, Latitude 5424 Rugged , Latitude 7424 Rugged Extreme, Precision 3930 XL Rack, Precision 3630 XL Tower, Precision 7720, Precision 3630 Tower, Precision 3930 Rack ...

Article Number: 000453482

Article Type: Dell Security Advisory

Last Modified: 09 Jun 2026

Check if your device is covered by Support Services.

DSA-2026-197: Security Update for Dell Client Platform BIOS for a Weak Encoding for Password Vulnerability

Summary: Dell Client Platform BIOS remediation is available for a Weak Encoding for Password vulnerability that could be exploited by malicious users to compromise the affected system.

Impact

Details

Affected Products & Remediation

Revision History

Acknowledgements

Related Info

Legal Disclaimer

Affected Products

Impact

Details

Affected Products & Remediation

Revision History

Acknowledgements

Related Information

Legal Disclaimer

Affected Products

Article Properties

Find answers to your questions from other Dell users

Support Services

Article Properties

Find answers to your questions from other Dell users

Support Services

DSA-2026-197: Security Update for Dell Client Platform BIOS for a Weak Encoding for Password Vulnerability

Summary: Dell Client Platform BIOS remediation is available for a Weak Encoding for Password vulnerability that could be exploited by malicious users to compromise the affected system.

Detailed Article

Impact

Details

Affected Products & Remediation

Revision History

Acknowledgements

Related Information

Legal Disclaimer

Affected Products

Article Properties

Find answers to your questions from other Dell users

Support Services

Article Properties

Find answers to your questions from other Dell users

Support Services