CVE-2026-40638

CVSS 6.7 · Medium EPSS 0.01% · P3 Updated May 15, 2026

Possible ATT&CK Techniques 1AI

T1068 · Exploitation for Privilege Escalation

Affected Version Matrix 1

Vendor	Product	Version Range	Status
Dell	PowerScale InsightIQ	`< 6.3.0 or later`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-40638

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Dell PowerScale InsightIQ, versions 5.0.0 through 6.2.0, contains an execution with unnecessary privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

带着不必要的权限执行

Source: NVD (National Vulnerability Database)

Vulnerability Title

Dell PowerScale InsightIQ 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Dell PowerScale InsightIQ是美国戴尔（Dell）公司的一个强大的性能监控和报告工具。 Dell PowerScale InsightIQ 5.0.0版本至6.2.0版本存在安全漏洞，该漏洞源于不必要的权限执行问题，可能导致具有本地访问权限的高权限攻击者提升权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Dell	PowerScale InsightIQ	0 ~ 6.3.0 or later	-

II. Public POCs for CVE-2026-40638

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-40638

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: PowerScale InsightIQ

Same vendor: Dell

Same weakness: CWE-250

V. Comments for CVE-2026-40638

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-40638

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

I. Basic Information for CVE-2026-40638

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-40638

III. Intelligence Information for CVE-2026-40638

IV. Related Vulnerabilities

V. Comments for CVE-2026-40638

Leave a comment