CVE-2026-40641

MEDIUM

Dell PowerFlex - Use of a Broken or Risky Cryptographic Algorithm

Title source: rule
STIX 2.1

Description

Dell PowerFlex Manager, version(s) prior to 5.1.0.1, contain(s) an Use of a Broken or Risky Cryptographic Algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and Information tampering.

Scores

CVSS v3 4.8
EPSS 0.0010
EPSS Percentile 1.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-327
Status published
Products (3)
Dell/PowerFlex < 4.5.5.2 or later
Dell/PowerFlex < 5.1.0.1 or later
dell/powerflex_manager < 4.5.5.2
Published Jun 17, 2026
Tracked Since Jun 17, 2026