Dell BIOS Weak Password Recovery Vulnerability
CVE-2025-36579 Published on April 16, 2026

Dell Client Platform BIOS contains a Weak Password Recovery Mechanism vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability, leading to unauthorized access.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2025-36579 can be exploited with physical access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.

Attack Vector:

PHYSICAL

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

CHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

LOW

Weakness Type

Weak Password Recovery Mechanism for Forgotten Password

The software contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.

Affected Versions

Dell Pro 14 Essential PV14250:

Before 1.4.0 is affected.

Dell Pro Micro / QCM1255:

Before 1.9.1 is affected.

Dell Pro Slim / QCS1255:

Before 1.9.1 is affected.

Dell Pro Tower / QCT1255:

Before 1.9.1 is affected.

Dell Alienware 16 Area-51 AA16250:

Before 1.9.0 is affected.

Dell Alienware 16X Aurora AC16251:

Before 1.8.1 is affected.

Dell Alienware 18 Area-51 AA18250:

Before 1.9.0 is affected.

Dell Alienware Area-51 AAT225:

Before 1.11.0 is affected.

Dell Alienware Aurora ACT1250:

Before 1.10.0 is affected.

Dell Alienware m15 R6:

Before 1.42.0 is affected.

Dell Alienware m15 R7:

Before 1.37.0 is affected.

Dell Alienware m16 R1:

Before 1.32.0 is affected.

Dell Alienware m16 R2:

Before 1.18.0 is affected.

Dell Alienware m18 R1:

Before 1.32.0 is affected.

Dell Alienware M18 R2:

Before 1.20.0 is affected.

Dell Alienware x14 R2:

Before 1.30.1 is affected.

Dell Alienware x16 R1:

Before 1.30.1 is affected.

Dell Alienware X16 R2:

Before 1.18.1 is affected.

Dell ChengMing 3900:

Before 1.37.0 is affected.

Dell ChengMing 3910/3911:

Before 1.32.0 is affected.

Dell ChengMing 3990:

Before 1.35.1 is affected.

Dell ChengMing 3991:

Before 1.35.1 is affected.

Dell 14 DC14250:

Before 1.4.0 is affected.

Dell 14 Premium DA14250:

Before 1.5.1 is affected.

Dell 15 DC15250:

Before 1.6.0 is affected.

Dell 16 DC16250:

Before 1.7.0 is affected.

Dell 16 DC16251:

Before 1.7.0 is affected.

Dell 16 Premium DA16250:

Before 1.7.0 is affected.

Dell G15 5510:

Before 1.38.0 is affected.

Dell G15 5511:

Before 1.41.0 is affected.

Dell G15 5520:

Before 1.38.0 is affected.

Dell G15 5530:

Before 1.30.0 is affected.

Dell G16 7620:

Before 1.38.0 is affected.

Dell G16 7630:

Before 1.30.0 is affected.

Dell G5 5000:

Before 1.28.2 is affected.

Dell Pro 13 Plus PB13250:

Before 2.8.1 is affected.

Dell Pro 13 Plus PB13255:

Before 1.9.1 is affected.

Dell Pro 13 Premium PA13250:

Before 2.8.1 is affected.

Dell Pro 14 PC14250:

Before 1.10.2 is affected.

Dell Pro 14 Plus PB14250:

Before 2.8.1 is affected.

Dell Pro 14 Plus PB14255:

Before 1.9.1 is affected.

Dell Pro 14 Premium PA14250:

Before 2.8.1 is affected.

Dell Pro 15 Essential PV15250:

Before 1.2.0 is affected.

Dell Pro 16 PC16250:

Before 1.10.2 is affected.

Dell Pro 16 Plus PB16250:

Before 2.8.1 is affected.

Dell Pro 16 Plus PB16255:

Before 1.9.1 is affected.

Dell Pro 24 All-in-One Plus/Dell Pro 24 All-in-One:

Before 1.10.1 is affected.

Dell Pro Laptop PC14250:

Before 1.10.2 is affected.

Dell Pro Laptop PC16250:

Before 1.10.2 is affected.

Dell Pro Max 14 MC14250:

Before 1.9.0 is affected.

Dell Pro Max 14 MC14255:

Before 1.6.2 is affected.

Dell Pro Max 16 MC16250:

Before 1.9.0 is affected.

Dell Pro Max 16 MC16255:

Before 1.6.2 is affected.

Dell Pro Max Micro FCM2250:

Before 1.10.1 is affected.

Dell Pro Max Slim FCS1250:

Before 1.10.1 is affected.

Dell Pro Max Tower T2 FCT2250:

Before 1.10.1 is affected.

Dell Pro Micro/Micro Plus QCM1250/QBM1250:

Before 1.10.1 is affected.

Dell Pro Rugged 13 RA13250:

Before 1.12.1 is affected.

Dell Pro Rugged 14 RB14250:

Before 1.12.1 is affected.

Dell Pro Slim Essential QVS1260:

Before 1.10.1 is affected.

Dell Pro Slim Plus QBS1250/Dell Pro Slim QCS1250:

Before 1.10.1 is affected.

Dell Pro Tower Essential QVT1260:

Before 1.10.1 is affected.

Dell Pro Tower Plus QBT1250/Dell Pro Tower QCT1250:

Before 1.10.1 is affected.

Dell Slim ECS1250:

Before 1.10.1 is affected.

Dell Tower ECT1250:

Before 1.10.1 is affected.

Dell Tower Plus EBT2250:

Before 1.11.0 is affected.

Dell Inspiron 13 5320:

Before 1.30.0 is affected.

Dell Inspiron 13 5330:

Before 1.28.0 is affected.

Dell Inspiron 14 5420:

Before 1.33.0 is affected.

Dell Inspiron 14 5430:

Before 1.26.0 is affected.

Dell Inspiron 14 5440:

Before 1.19.0 is affected.

Dell Inspiron 14 7420 2-in-1:

Before 1.31.0 is affected.

Dell Inspiron 14 7430 2-in-1:

Before 1.26.0 is affected.

Dell Inspiron 14 7440 2-in-1:

Before 1.19.0 is affected.

Dell Inspiron 14 Plus 7420:

Before 1.34.0 is affected.

Dell Inspiron 14 Plus 7430:

Before 1.26.0 is affected.

Dell Inspiron 14 Plus 7440:

Before 1.22.0 is affected.

Dell Inspiron 15 3511:

Before 1.43.0 is affected.

Dell Inspiron 15 3520:

Before 1.39.0 is affected.

Dell Inspiron 16 5620:

Before 1.33.0 is affected.

Dell Inspiron 16 5630:

Before 1.26.0 is affected.

Dell Inspiron 16 5640:

Before 1.18.0 is affected.

Dell Inspiron 16 7610:

Before 1.36.0 is affected.

Dell Inspiron 16 7620 2-in-1:

Before 1.31.0 is affected.

Dell Inspiron 16 7630 2-in-1:

Before 1.26.0 is affected.

Dell Inspiron 16 7640 2-in-1:

Before 1.18.0 is affected.

Dell Inspiron 16 Plus 7620:

Before 1.34.0 is affected.

Dell Inspiron 16 Plus 7630:

Before 1.26.0 is affected.

Dell Inspiron 16 Plus 7640:

Before 1.22.0 is affected.

Dell Inspiron 24 5420 All-in-One:

Before 1.25.0 is affected.

Dell Inspiron 24 5430 All-in-One:

Before 1.18.0 is affected.

Dell Inspiron 27 7720 All-in-One:

Before 1.25.0 is affected.

Dell Inspiron 27 7730 All-in-One:

Before 1.18.0 is affected.

Dell Inspiron 3020 Desktop:

Before 1.32.0 is affected.

Dell Inspiron 3020 Small Desktop:

Before 1.32.0 is affected.

Dell Inspiron 3030:

Before 1.22.1 is affected.

Dell Inspiron 3030S:

Before 1.22.1 is affected.

Dell Inspiron 3910:

Before 1.37.0 is affected.

Dell Inspiron 5400/5401:

Before 1.37.0 is affected.

Dell Inspiron 5401 AIO:

Before 1.37.0 is affected.

Dell Inspiron 5410 All-in-One:

Before 1.35.0 is affected.

Dell Inspiron 5510:

Before 2.39.0 is affected.

Dell Inspiron 7700 All-In-One:

Before 1.37.0 is affected.

Dell Inspiron 7710 All-in-One:

Before 1.35.0 is affected.

Dell Latitude 3120:

Before 1.35.1 is affected.

Dell Latitude 3140:

Before 1.28.1 is affected.

Dell Latitude 3140 2in1:

Before 1.28.1 is affected.

Dell Latitude 3320:

Before 1.41.0 is affected.

Dell Latitude 3330:

Before 1.33.0 is affected.

Dell Latitude 3340:

Before 1.29.0 is affected.

Dell Latitude 3410:

Before 1.36.0 is affected.

Dell Latitude 3420:

Before 1.46.0 is affected.

Dell Latitude 3430:

Before 1.32.0 is affected.

Dell Latitude 3440:

Before 1.29.0 is affected.

Dell Latitude 3450:

Before 1.20.0 is affected.

Dell Latitude 3510:

Before 1.36.0 is affected.

Dell Latitude 3520:

Before 1.46.0 is affected.

Dell Latitude 3530:

Before 1.32.0 is affected.

Dell Latitude 3540:

Before 1.29.0 is affected.

Dell Latitude 3550:

Before 1.20.0 is affected.

Exploit Probability

EPSS

0.01%

Percentile

1.03%