What is CVE-2025-36579?

CVE-2025-36579 is a medium-severity vulnerability in Dell Alienware 16 Area-51 Aa16250, classified under Weak Password Recovery Mechanism for Forgotten Password. CVSS score: 5.1/10. Published 2026-04-16.

How severe is CVE-2025-36579?

Medium severity. CVSS v3 base score is 5.1 out of 10.

Vulnerability in Dell Alienware 16 Area-51 Aa16250

CVE-2025-36579

Dell Client Platform BIOS contains a Weak Password Recovery Mechanism vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability, leading to unauthorized access.

EPSS: 0.000 (3.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.1 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L.

Affected products

Dell Alienware 16 Area-51 Aa16250 — versions 0
Dell Alienware 16x Aurora Ac16251 — versions 0
Dell Alienware 18 Area-51 Aa18250 — versions 0
Dell Alienware Area-51 Aat225 — versions 0
Dell Alienware Aurora Act1250 — versions 0
Dell Alienware M15 R6 — versions 0
Dell Alienware M15 R7 — versions 0
Dell Alienware M16 R1 — versions 0
Dell Alienware M16 R2 — versions 0
Dell Alienware M18 R1 — versions 0

Weakness classification (CWE)

CWE-640 — Weak Password Recovery Mechanism for Forgotten Password

References

www.dell.com/support/kbdoc/en-us/000300450/dsa-2025-153 (vendor-advisory)

Frequently asked questions

What is CVE-2025-36579?: CVE-2025-36579 is a medium-severity vulnerability in Dell Alienware 16 Area-51 Aa16250, classified under Weak Password Recovery Mechanism for Forgotten Password. CVSS score: 5.1/10. Published 2026-04-16.
How severe is CVE-2025-36579?: Medium severity. CVSS v3 base score is 5.1 out of 10.