CVE-2026-40713
Undergoing Analysis
Undergoing Analysis - In Progress
Improper Access Control in Dell ThinOS 10
Publication date: 2026-06-02
Last updated on: 2026-06-02
Assigner: Dell
Description
Description
Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access control vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information exposure.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dell | thinos | to 2602_10.0765 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Dell ThinOS 10 versions prior to ThinOS10 2602_10.0765 and is an Improper Access Control issue. It allows an unauthenticated attacker who has physical access to the device to potentially exploit the system, which can lead to information exposure.
How can this vulnerability impact me? :
If exploited, this vulnerability can lead to the exposure of sensitive information because an attacker with physical access can bypass access controls without authentication.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70