Description

Dell Client Platform BIOS contains a Weak Password Recovery Mechanism vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability, leading to unauthorized access.

INFO

Published Date :

2026-04-16T16:05:32.561Z

Last Modified :

2026-04-16T18:32:52.672Z

Source :

dell
AFFECTED PRODUCTS

The following products are affected by CVE-2025-36579 vulnerability.

Vendors Products
Dell
  • 14 Dc14250
  • 14 Premium Da14250
  • 15 Dc15250
  • 16 Dc16250
  • 16 Dc16251
  • 16 Premium Da16250
  • Alienware 16 Area-51 Aa16250
  • Alienware 16x Aurora Ac16251
  • Alienware 18 Area-51 Aa18250
  • Alienware Area-51 Aat225
  • Chengming 3910/3911
  • G15 5520
  • G15 5530
  • G16 7620
  • G16 7630
  • Pro 13 Plus Pb13250
  • Pro 13 Plus Pb13255
  • Pro 13 Premium Pa13250
  • Pro 14 Essential Pv14250
  • Pro 14 Pc14250
  • Pro 14 Plus Pb14250
  • Pro 14 Plus Pb14255
  • Pro 14 Premium Pa14250
  • Pro 15 Essential Pv15250
  • Pro 16 Pc16250
  • Pro 16 Plus Pb16250
  • Pro 16 Plus Pb16255
  • Pro 24 All-in-one Plus/dell Pro 24 All-in-one
  • Pro Laptop Pc14250
  • Pro Laptop Pc16250
  • Pro Max 14 Mc14250
  • Pro Max 14 Mc14255
  • Pro Max 16 Mc16250
  • Pro Max 16 Mc16255
  • Pro Max Micro Fcm2250
  • Pro Max Slim Fcs1250
  • Pro Max Tower T2 Fct2250
  • Pro Micro/micro Plus Qcm1250/qbm1250
  • Pro Micro / Qcm1255
  • Pro Rugged 13 Ra13250
  • Pro Rugged 14 Rb14250
  • Pro Slim / Qcs1255
  • Pro Slim Essential Qvs1260
  • Pro Slim Plus Qbs1250/dell Pro Slim Qcs1250
  • Pro Tower / Qct1255
  • Pro Tower Essential Qvt1260
  • Pro Tower Plus Qbt1250/dell Pro Tower Qct1250
  • Slim Ecs1250
  • Tower Ect1250
  • Tower Plus Ebt2250
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-36579.

URL Resource
https://www.dell.com/support/kbdoc/en-us/000300450/dsa-2025-153 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact