vulnerability
Dell PowerEdge: CVE-2025-29989: DSA-2025-252: Security Update for Dell PowerEdge T40 Mini Tower Server for a Security Version Number Mutable to Older Versions Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:L/Au:M/C:N/I:N/A:C) | Jun 23, 2025 | Jan 12, 2026 | Mar 25, 2026 |
Severity
4
CVSS
(AV:L/AC:L/Au:M/C:N/I:N/A:C)
Published
Jun 23, 2025
Added
Jan 12, 2026
Modified
Mar 25, 2026
Description
Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to BIOS upgrade denial.
Solution
dell-poweredge-upgrade-latest
References
- CVE-2025-29989
- https://attackerkb.com/topics/CVE-2025-29989
- https://www.dell.com/support/kbdoc/en-us/000335060/dsa-2025-252-security-update-for-dell-poweredge-t40-mini-tower-server-for-a-security-version-number-mutable-to-older-versions-vulnerability
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-10503
- CWE-1328
- EUVD-EUVD-2025-10503
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.