Elevation of Privileges Vulnerability in Dell PowerScale InsightIQ
CVE-2026-40638

6.7MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Insightiq
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-40638?

Dell PowerScale InsightIQ versions 5.0.0 through 6.2.0 are vulnerable to an elevation of privileges issue. This vulnerability could allow a high-privileged attacker with local access to exploit the system, potentially granting them elevated permissions unnecessarily. It is crucial for users of these versions to apply security patches and limit local access to mitigate potential exploits.

Affected Version(s)

PowerScale InsightIQ 0 < 6.3.0 or later

References

https://www.dell.com/support/kbdoc/en-us/000463695/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Apr 14, 2026

Credit

Dell would like to thank Ahmed Y. Elmogy for reporting this issue.

CVE-2026-40638 Data

JSON